Apple has released updates for the majority of its platforms, including iOS 18.4.1, iPadOS 18.4.1, macOS 15.4.1, tvOS 18.4.1, and visionOS 2.4.1, on Wednesday. These updates include two security fixes that address vulnerabilities which may have been exploited in actual attacks, making it prudent to update devices promptly.

According to Apple, there is a report indicating that both of these security vulnerabilities “may have been exploited in a highly sophisticated attack targeting specific individuals using iOS.”

Among the fixes is a patch for a bug in CoreAudio, Apple’s audio framework, which involved a memory corruption issue. This flaw allowed malicious media files to execute arbitrary code when they were processed as audio streams. Another fix addresses an issue with the Remote Participant Audio Control (RPAC) framework, used by communications apps to manage audio streams. This vulnerability enabled an attacker, with arbitrary read and write capabilities, to bypass Pointer Authentication, a key security feature integrated into Apple’s processors.

Apple emphasizes the importance of these updates by “strongly advising” all users to update their devices as soon as possible.