CVE-2025-43350

Published: Nov 4, 2025Modified: Nov 5, 2025

2.4

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 0.9 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.1 and iPadOS 26.1. An attacker may be able to view restricted content from the lock screen.

Affected (2)

Products: Apple: Ipados, Iphone Os

Apple

2 products

Ipados

Iphone Os

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 26.1
Apple Iphone Os	Before 26.1

Related CWEs

CWE-276

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (1)

https://support.apple.com/en-us/125632

Source: product-security@apple.com

Release NotesVendor Advisory

Timeline

No history available yet.