CVE-2025-46286

Summary

A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOS0 < 26.2affected

Weaknesses

  • Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References