Particle.news
Download on the App Store
4 ARTICLES
·
23h ago

Apple Releases iOS 18.6 and Companion Updates to Patch Critical Zero-Day Flaw

Apple’s broad software rollout across iPhone to visionOS patches a WebKit zero-day plus 28 other flaws to help users secure devices before exploit details are disclosed

The bug affects both Chrome and Safari.
iOS 18.6 fixes a big security loophole
Image

Overview

  • On August 1, 2025, Apple issued iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6 and visionOS 2.6 to address 29 critical vulnerabilities.
  • The most severe issue, CVE-2025-6558, allows remote attackers to execute arbitrary code via crafted HTML pages in WebKit-based browsers.
  • Security experts, including Jamf’s Josh Stein, report no known in-the-wild exploitation and urge immediate installation of the patches.
  • All devices running iOS 18—from iPhone XS through the iPhone 16 series—are compatible, while older hardware can receive companion updates or should be upgraded to stay protected.
  • Apple maintained its practice of limited pre-patch disclosures and rapid cross-platform deployment in coordination with Google’s Threat Analysis Group and CISA guidelines.