Apple has addressed two zero-day security vulnerabilities in its recent software updates for Apple devices. The company acknowledged that the vulnerabilities were actively exploited and may have impacted iOS versions prior to iOS 16.7.1.

Discovered by Clément Lecigne of Google’s Threat Analysis Group, the zero-day bugs targeted high-risk individuals such as politicians, journalists, and dissidents.

Also Read: Apple Plans OLED MacBook Pros and Upgraded MacBook Air Launch in 2026

Although Apple didn’t provide specific details on the vulnerabilities, it revealed that both flaws affected WebKit, the open-source browser framework behind Safari.

The first bug exposed sensitive information during web content processing, while the second had the potential for arbitrary code execution during the same process. The security update applies to various Apple devices, including iPhone XS and later, iPad Pro, iPad Air, and iPad mini models.