Apple has released emergency security updates to patch a zero-day vulnerability that may disable USB restricted mode on locked iPads and iPhones.
“Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals,” the company says in a February 10, 2025, advisory.
The devices impacted include:
- iPhone XS and later;
- iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later; and
- iPad Pro 12.9-inch 2nd generation, iPad Pro 10.5-inch, and iPad 6th generation.
The vulnerability, CVE-2025-24200, is now patched by Apple and addressed in iOS 18.3.1, iPadOS 18.3.1, and iPadOS 17.7.5 with improved state management. Apple says it does not disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available.
Apple advises to install the security updates immediately.
