Apple has released iOS 18.3.2, an operating system update that fixes a vulnerability in WebKit, the browser engine used by Safari to render web pages. The flaw allowed malicious code running inside the Web Content sandbox, an isolated environment for web processes designed to limit security risks, to impact other parts of the device.
Apple previously fixed this vulnerability, CVE-2025-24201, with the release of iOS 17.2 back in late 2023, but this release adds a supplemental patch. In the release notes for iOS 18.3.2, Apple stated that the issue has been “addressed with improved checks to prevent unauthorized actions.” That same patch has also been applied in iPadOS 18.3.2, macOS Sequoia 15.3.2, visionOS 2.3.2, and Safari…