Update Now: iOS 18.4.1 and macOS Sequoia 15.4.1 Address Actively Exploited Vulnerabilities - MacRumorsOpen MenuShow RoundupsShow Forums menuVisit ForumsOpen Sidebar
Skip to Content

Update Now: iOS 18.4.1 and macOS Sequoia 15.4.1 Address Actively Exploited Vulnerabilities

The iOS 18.4.1, iPadOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1, and visionOS 2.4.1 updates that Apple released today include fixes for two major vulnerabilities, which means you should install the new software as soon as you can.

bug security vulnerability issue fix larry
According to Apple, it is aware of reports that these vulnerabilities may have been actively exploited in the wild. Apple says that the security flaws were potentially used in an "extremely sophisticated attack against specific targeted individuals."

One of the issues impacts CoreAudio, and involves a maliciously crafted audio file. Processing the audio stream in the media file could result in code execution. Apple fixed the memory corruption issue with improved bounds checking.

The other vulnerability affected pointer authentication code, and an attacker with arbitrary read and write capability could bypass the Pointer Authentication features that prevent memory from being tampered with. Apple removed the vulnerable code to prevent the exploit from working.

All of the updates are available today, and focus primarily on the security fixes. iOS 18.4.1 also addresses an issue that could prevent some wireless CarPlay setups from working properly in select vehicles.

Related Forums: iOS 18, iPadOS 18, macOS Sequoia

Popular Stories

iCloud iPhone 17 Pro

iPhone Users Who Pay for iCloud Storage Get Two New Perks on iOS 27

Thursday July 2, 2026 6:10 am PDT by
If you pay for certain iCloud+ storage plans beyond the 5GB that Apple offers for free, you will receive two more perks on iOS 27 at no additional cost. A summary of the two new iCloud+ perks on iOS 27:Increased daily usage limits for some new Apple Intelligence features, including image generation in the revamped Image Playground app. HomeKit Secure Video cameras receive generated video...
iPhone 4 on Black Feature

Apple Facing One of Its Worst Leaks Since the iPhone 4

Thursday July 2, 2026 9:53 am PDT by
Apple supplier Tata Electronics recently suffered a cyberattack that resulted in thousands of confidential files being published on the dark web, and this reportedly included some photos and documents related to the upcoming iPhone 18 Pro. We have elected not to share any of the leaked photos in this story due to the illegal nature in which they were obtained, but they can easily be found...
Apple Event Logo

Apple Just Released a New Product

Thursday July 2, 2026 8:04 am PDT by
Apple's first product release of summer 2026 occurred this week, but do not get too excited, as it is merely the Beats Solo Buds in a new color. Beats Solo Buds are now offered in orange through Best Buy in the U.S., with availability set to expand to 7-Eleven stores in Japan on July 4. Apple already offered orange Solo Buds in India for free with the purchase of an iPhone 15 or iPhone 15 ...

Top Rated Comments

16 months ago

Instead of 'this affected only a small amount/handful of users' they changed their text to sophisticated attacks against specific individuals. Classic Apple Marketing.
Sure, but this description is also arguably better for describing state sponsored targeted attacks.
Score: 14 Votes (Like | Disagree)
VictoryHighway Avatar
16 months ago

I hope some day this type of updates are released as a “rapid security response”
Yeah. Whatever happened to those?
Score: 13 Votes (Like | Disagree)
16 months ago
I hope some day this type of updates are released as a “rapid security response”
Score: 12 Votes (Like | Disagree)
hoodafoo Avatar
16 months ago

Has anyone actually ever been hacked? Still rolling on 16.7.2 on my 14 pro…. You don’t ever see any horror stories of people having their iPhone hacked because they didn’t update. At least I haven’t.
It just means you're not important
Score: 9 Votes (Like | Disagree)
jz0309 Avatar
16 months ago
Obliged.
I like security and bug fixes
Score: 9 Votes (Like | Disagree)
jayducharme Avatar
16 months ago
Weird: after the update, I'm no longer receiving 2-factor authentication texts. I tried rebooting, but no luck. I'm still getting regular messages though.

Never mind. I'm a dope. After the last power-down I forgot to turn my iPhone back on. Everything's working fine.
Score: 6 Votes (Like | Disagree)