U.S. CISA adds Apple products' flaw to its Known Exploited Vulnerabilities catalog

CISA added a privilege escalation vulnerability in Apple products, CVE-2025-24085, to its Known Exploited Vulnerabilities catalog. The vulnerability, actively exploited in attacks targeting iPhone users, impacts iOS devices running versions before iOS 17.2. CISA orders federal agencies to address this vulnerability by February 13, 2025.