Apple fixed the first actively exploited zero-day of 2025

Apple addressed the first zero-day vulnerability of 2025, which is actively exploited in attacks in the wild aimed at iPhone users. Apple released security updates to address 2025’s first zero-day vulnerability, tracked as CVE-2025-24085, actively exploited in attacks targeting iPhone users. The vulnerability is a privilege escalation vulnerability that impacts the Core Media framework. “A malicious […]

Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

itsecuritynews.info - 28/Jan 04:33

Apple has released software updates to address several security flaws across its portfolio, including a zero-day vulnerability that it said has been...

Apple fixes this year’s first actively exploited zero-day bug

bleepingcomputer.com - 27/Jan 19:17

Apple has released security updates to fix this year's first zero-day vulnerability, tagged as actively exploited in attacks targeting iPhone...

U.S. CISA adds Apple products’ flaw to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 29/Jan 20:39

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products’ flaw to its Known Exploited Vulnerabilities catalog. The U.S....

CISA adds Apple vulnerability CVE-2025-24085 to KEV Catalog

thecyberthrone.in - 01:04

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24085 Apple...

CVE-2025-24085 Apple fixes Critical Zeroday

thecyberthrone.in - 28/Jan 01:20

Background CVE-2025-24085 is a critical zero-day vulnerability identified in Apple’s Core Media framework. This framework is integral to the...

FortiOS Authentication Bypass Vulnerability Exploited to Gain Super-Admin Access

itsecuritynews.info - 28/Jan 05:33

A critical zero-day vulnerability in Fortinet’s FortiOS and FortiProxy products tracked as CVE-2024-55591, has been actively exploited in the wild,...

SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild

securityaffairs.co - 24/Jan 09:36

SonicWall warns customers of a critical zero-day vulnerability in SMA 1000 Series appliances, likely exploited in the wild. SonicWall is waring...

CISA Warns of SonicWall 0-day RCE Vulnerability Exploited in Wild

itsecuritynews.info - 26/Jan 04:06

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical vulnerability, CVE-2025-23006, affecting...

Attackers actively exploit a critical zero-day in Zyxel CPE Series devices

securityaffairs.co - 29/Jan 10:17

Experts warn that threat actors are actively exploiting critical zero-day vulnerability, tracked as CVE-2024-40891, in Zyxel CPE Series devices....

TeamViewer fixed a vulnerability in Windows client and host applications

securityaffairs.co - 15:29

TeamViewer has patched a high-severity privilege escalation vulnerability affecting its Windows client and host applications. TeamViewer released...

Rubriques :