Apple has also issued system security releases throughout the device ecosystem, fixing 27 bugs in iOS 26 and iPadOS 26, and 77 bugs in macOS 26, as the company plans to release new iPhones and mitigate various security bugs, and does not include warnings that the identified vulnerabilities are actively used.
Significant security updates in all operating systems
The newest operating systems of its most marketable products, iPhones, iPads, and Macs, contain fixes to several vulnerabilities, yet the company did not give any warnings regarding ongoing exploitation, as revealed by CyberScoop. The release of iOS 26 and iPadOS 26 and 77 vulnerabilities with the release of macOS 26 contained 27 bugs and 77 vulnerabilities, respectively, some of which impacted software on all three devices.
The new operating systems published by Apple on Monday are now numbered according to the year they were released, and the company is ready to send new iPhones at the end of the week. Users who do not need to update to the newest versions, which can be translated to the so-called liquid glass design style, which is introduced by Apple, can fix the most severe vulnerabilities by updating to iOS 18.7, iPad 18.7, or macOS 15.7.
None of the active exploitations identified
It does not look like any of the vulnerabilities that Apple announced this week are actively under attack, Dustin Childs, the head of threat awareness at Trend Micro Zero Day Initiative, told CyberScoop. The majority of the Apple products published in 2019 or before are incompatible with the recent operating systems. This is not the first time that Apple has offered an emergency software update to customers in the last month to remedy a zero-day vulnerability known as CVE-2025-43300 that was exploited in a highly sophisticated attack aimed directly against selected individuals.
The firm has dealt with five actively used zero-days this year, among which flaws were announced earlier in January, February, March, and April. This year, seven Apple vulnerabilities were listed on the known exploited vulnerabilities catalog of the Cybersecurity and Infrastructure Security Agency. In contrast with most vendors, Apple does not state how serious the vulnerabilities it eliminates in updates to its software are.
High-risk Mac OS vulnerabilities
Childs observed that it would be useful if Apple could release some form of preliminary severity notification with the vulnerabilities that it is patching, though not necessarily with the Common Vulnerability Scoring System. Two vulnerabilities fixed by macOS, including CVE-2025-432543298, a vulnerability in PackageKit, and CVE-2025-43304, a vulnerability in StorageKit, are of concern since an attacker could use them to gain root privileges, according to Childs.
On the iOS side, he says there is nothing that sends him to the sweatshop, but lots of bugs are being fixed. Seven defects were also fixed in Safari 26, 19 vulnerabilities in watchOS 26, 18 bugs in visionOS 2,6, and five bugs in Xcode 26. The vulnerabilities and the latest versions of software are provided at the Apple security releases site.
Extensive coverage of the ecosystem
The security patches cover the entire product ecosystem at Apple, demonstrating the company’s commitment to ensuring security across all platforms. These updates tend to coincide with Apple’s new iPhone releases, which is why security is no longer overlooked and is an ongoing priority, alongside new product releases. The patches embrace numerous forms of vulnerabilities, which include, but are not limited to, privilege escalation vulnerabilities and possible remote code execution vulnerabilities.
The recent security updates of Apple are a major step towards ensuring the system security of its devices throughout the ecosystem, covering more than 100 vulnerabilities with no sign of active usage. These updates should be prioritized by the users to ensure safety against possible threats, and the company itself should remain proactive towards cybersecurity in the context of a more sophisticated threat environment.