{"id":423,"date":"2025-03-14T22:07:08","date_gmt":"2025-03-14T22:07:08","guid":{"rendered":"https:\/\/www.techrepublic.com\/?p=4297539"},"modified":"2025-03-14T22:07:08","modified_gmt":"2025-03-14T22:07:08","slug":"update-your-iphone-now-to-fix-safari-security-flaw","status":"publish","type":"post","link":"https:\/\/blog.tecnoartesanos.com\/index.php\/2025\/03\/14\/update-your-iphone-now-to-fix-safari-security-flaw\/","title":{"rendered":"Update Your iPhone Now to Fix Safari Security Flaw"},"content":{"rendered":"
\"Close
Image: Apple\u2019s Official YouTube Page<\/figcaption><\/figure>\n

Apple has released iOS 18.3.2, an operating system update that fixes a vulnerability in WebKit, the browser engine used by Safari to render web pages. The flaw allowed malicious code running inside the Web Content sandbox, an isolated environment for web processes designed to limit security risks, to impact other parts of the device.<\/p>\n

Apple previously fixed this vulnerability, CVE-2025-24201<\/a>, with the release of iOS 17.2<\/a> back in late 2023, but this release adds a supplemental patch. In the release notes<\/a> for iOS 18.3.2, Apple stated that the issue has been \u201caddressed with improved checks to prevent unauthorized actions.\u201d That same patch has also been applied in iPadOS 18.3.2, macOS Sequoia 15.3.2, visionOS 2.3.2, and Safari 18.3.1.<\/p>\n

\u201cVulnerabilities in WebKit should be patched quickly, as it is the framework that powers Safari and renders other web-based content,\u201d Adam Boynton, Senior Security Strategy Manager at Apple security firm Jamf, told TechRepublic in an email.<\/p>\n

\u201cIn this particular flaw, attackers were able to use maliciously crafted web content to escape the iOS Web Content sandbox. Breaking out of a sandbox allows an attacker to access data in other parts of the operating system.\u201d<\/p>\n