CVE-2025-30436

Summary

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.4 and iPadOS 18.4. An attacker may be able to use Siri to enable Auto-Answer Calls.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 18.4affected

Weaknesses

  • An attacker may be able to use Siri to enable Auto-Answer Calls

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References