Critical iOS 18.4.1 update: get it on your iPhone right away
By ForGeeks Apple has released iOS 18.4.1 and iPadOS 18.4.1 updates, which, while only a small amount of changes, are critical to device security. The update affects a wide range of models and closes two dangerous vulnerabilities at once, one of which has already been exploited in attacks against individual users.
The updates are available for the following models: iPhone XS and later, iPad Pro 13 inches, iPad Pro 12.9 inches (from the third generation), iPad Pro 11 inches (from the first generation), iPad Air (from the third generation), iPad seventh generation and later, and iPad mini fifth generation and later.
Closing critical vulnerability CVE-2025-31200
One of the major issues addressed in this update was a vulnerability related to audio stream processing. During audio playback, a memory error could occur, allowing attackers to execute arbitrary code on the device. This paved the way for attacks where the program would execute malicious instructions.
Apple confirms that the vulnerability has already been exploited in real-world targeted attacks that were highly sophisticated. The issue has been fixed with improved bounds checking when handling files, which prevents data from being placed outside of the allowed memory footprint or file overflow.
This vulnerability was reported as CVE-2025-31200 and was discovered jointly by Google and Apple. It affects all supported devices, including iPhone XS, iPad Pro, iPad Air, and the other models listed above.
Second threat: CVE-2025-31201 vulnerability and Pointer Authentication protection
In addition to the first issue, a second vulnerability, CVE-2025-31201, was also found in the system. It was discovered by Apple’s experts. The flaw bypasses Pointer Authentication, a critical security feature on A and M series chips that prevents attacks on device memory.
If an attacker gained arbitrary access to read and write data, they could exploit this vulnerability to execute malicious code at the system level. This could lead to a complete compromise of the device.
An attacker could use this vulnerability to execute malicious code at the system level.
Apple says the vulnerability could also have been exploited in high-tech attacks targeting specific users. In the update, the vulnerable code has been completely removed, significantly improving system security.
Apple says the vulnerability could also have been exploited by high-tech attacks targeting specific users.
How to install the update and why it’s important
Installing iOS 18.4.1 and iPadOS 18.4.1 only takes a few minutes, but can prevent serious consequences, from infecting your device to losing access to banking apps and compromising personal data.
To install the update, go to Settings → Basic → Software Update and follow the on-screen instructions.
The update applies to all models mentioned, including iPhone XS and newer, as well as eligible iPad models. Don’t delay installation – the security of your data may be at risk.
