In response to a critical security flaw actively being exploited on iOS and iPadOS devices, Apple has rolled out emergency updates to rectify the issue. The flaw, identified as CVE-2025-24200, poses a serious security risk as it allows attackers to bypass crucial security measures on locked Apple devices. It has already been confirmed that this vulnerability has been exploited in the wild, prompting urgent action from Apple users to update their devices immediately to safeguard themselves against potential attacks.
The vulnerability in question is linked to Apple’s USB Restricted Mode, a feature introduced in iOS 11.4.1 to prevent unauthorized data access through USB connections. When activated, this mode blocks all USB communication on an iPhone or iPad that has not been unlocked and connected to an accessory within the last hour. However, attackers have managed to exploit CVE-2025-24200 to disable this protective feature, enabling them to access a device’s data via USB connections even when the device is locked.
Described as an “authorization issue,” the flaw allows attackers to gain unauthorized access to a device’s state management system, thereby disabling USB Restricted Mode and accessing sensitive data stored on the device. This vulnerability is particularly alarming as it requires physical access to the device for exploitation, positioning it as a form of cyber-physical attack.
To counter this vulnerability, Apple has released emergency updates with enhanced state management in the affected systems. While the company has not disclosed the specifics of the attacks or the extent of exploitation, reports suggest that the flaw may have been leveraged in highly targeted and sophisticated attacks, particularly against specific individuals.
A wide range of Apple products, including recent models of iPhones, iPads, and iPad Pro devices, are affected by CVE-2025-24200. Users with these devices are strongly advised to update to the latest versions of iOS or iPadOS, namely iOS 18.3.1 and iPadOS 18.3.1, both released on February 10, 2025. These updates specifically target the security loophole in USB Restricted Mode, safeguarding devices against potential breaches.
Updating to the latest software version can be done easily by navigating to Settings > General > Software Update on affected devices. Additionally, users are encouraged to enable automatic software updates to ensure ongoing protection against future threats.
In conclusion, the CVE-2025-24200 zero-day vulnerability underscores the importance of timely software updates to mitigate security risks. Apple’s swift response in releasing emergency patches highlights the critical need for users to remain vigilant and proactive in protecting their devices against unauthorized access and potential cyber attacks. By staying up to date with software updates, users can enhance the security of their Apple devices and prevent exploitation of vulnerabilities that could compromise their sensitive data.