Serial number: AV25-837
Date: December 15, 2025
On December 12, 2025, Apple published a security update to address vulnerabilities in the following products:
- iOS – versions prior to 26.2
- iPadOS – versions prior to 26.2
- iOS – versions prior to 18.7.3
- iPadOS – versions prior to 18.7.3
- macOS Tahoe – versions prior to 26.2
- macOS Sequoia – versions prior to 15.7.3
- macOS Sonoma – versions prior to 14.8.3
- tvOS – versions prior to 26.2
- watchOS – versions prior to 26.2
- visionOS – versions prior to 26.2
- Safari – versions prior to 26.2
Apple is aware that CVE-2025-14174 and CVE-2025-43529 are being exploited.
On December 12, 2025, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-14174 to their Known Exploited Vulnerabilities (KEV) Database. CISA added CVE-2025-43529 to the KEV on December 15, 2025.
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.