CVE-2025-43230

Summary

The issue was addressed with additional permissions checks. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. An app may be able to access user-sensitive data.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 18.6affected
AppleiPadOS0 < 17.7.9affected
ApplemacOS0 < 15.6affected
AppletvOS0 < 18.6affected
ApplevisionOS0 < 2.6affected
ApplewatchOS0 < 11.6affected

Weaknesses

  • An app may be able to access user-sensitive data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References