Apple Fixes Security Flaw Exploited In Chrome Zero-Day Attacks - LinkedIn

Apple has issued security updates to address a high-severity vulnerability that has been actively exploited in zero-day attacks against Google Chrome users. The flaw, identified as CVE-2025-6558, stems from improper validation of untrusted input in ANGLE (Almost Native Graphics Layer Engine), an open-source graphics layer that translates OpenGL ES API calls to Direct3D, Metal, Vulkan, and OpenGL. The vulnerability could allow remote attackers to execute arbitrary code via specially crafted HTML pages, potentially enabling them to break out of the browser sandbox and gain access to the underlying system. The issue was discovered in June by Vlad Stolyarov and Clément Lecigne of Google’s Threat Analysis Group (TAG), which focuses on defending users from state-sponsored threats. Google patched the flaw in Chrome on July 15, labeling it as actively exploited. “Google is aware that an exploit for CVE-2025-6558 exists in the wild.” reads the alert published by Google. “This is a vulnerability in open source code and Apple Software is among the affected projects. The CVE-ID was assigned by a third party.” reads the advisory published by Apple. While Google has not disclosed specifics about the attacks, TAG often uncovers zero-day exploits used by government-backed threat actors in campaigns targeting journalists, activists, and political figures. On July 30, Apple released updates addressing CVE-2025-6558 for the following platforms: iOS 18.6 / iPadOS 18.6: iPhone XS and newer; various iPad Pro, Air, mini, and standard models macOS Sequoia 15.6: All supported Macs iPadOS 17.7.9: iPad Pro 12.9" (2nd gen), iPad Pro 10.5", and iPad 6th gen tvOS 18.6: Apple TV HD and Apple TV 4K visionOS 2.6: Apple Vision Pro watchOS 11.6: Apple Watch Series 6 and newer Recommended by LinkedIn Apple Warns of Three 0-Day Vulnerabilities Actively… SAYEED SHAZIA 11 months ago Apple Releases Emergency Patch For Two Zero-Day Flaws… The Cyber Security Hub™ 3 months ago Update Chrome right now! Veronica Rose, CISA, CDPSE 3 months ago According to Apple, successful exploitation of the flaw through malicious web content could lead to unexpected crashes in Safari. The company emphasized that, as the issue originates from open-source code, multiple projects—including its own—were affected. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-6558 to its list of Known Exploited Vulnerabilities (KEV) catalog. on July 22, ordering federal agencies to patch by August 12 under Binding Operational Directive 22-01. Although the directive applies only to federal systems, CISA urges all organizations to prioritize remediation, warning that such vulnerabilities are common targets for malicious actors and pose serious risks. This latest fix follows Apple’s earlier patches this year for five other zero-day vulnerabilities actively exploited in attacks: CVE-2025-24085 (January) CVE-2025-24200 (February) CVE-2025-24201 (March) CVE-2025-31200 and CVE-2025-31201 (April) 🔥 Download The Latest Malware Trends Report: Know Key Risks To Your Business Must Watch Webinar❗️Insider Risk Management & Compliance: Aligning with PRA, DORA and Beyond | August 5 2025