Skip to main content

iOS CVE-2025-46292

MEDIUM
Improper Access Control (CWE-284)
2025-12-17 product-security@apple.com
Information Disclosure Apple iOS Ipados Iphone Os
5.5
CVSS 3.1
Share

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
Analysis Generated
Apr 02, 2026 - 19:37 vuln.today
CVE Published
Dec 17, 2025 - 21:16 nvd
MEDIUM 5.5

DescriptionNVD

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access user-sensitive data.

AnalysisAI

Local authenticated applications on iOS and iPadOS can access user-sensitive data due to insufficient entitlement checks, affecting iOS 18.7.2 and earlier and iPadOS 18.7.2 and earlier (as well as iOS 26.1 and iPadOS 26.1 and earlier). An attacker with app installation capability can exploit this vulnerability to bypass privacy controls and exfiltrate protected user information. No public exploit identified at time of analysis, though the 5.5 CVSS score and information disclosure classification indicate moderate real-world risk in targeted attack scenarios.

Technical ContextAI

This vulnerability stems from CWE-284 (Improper Access Control / Insufficient Authorization Checks), a fundamental access control weakness in Apple's iOS and iPadOS security model. The issue occurs when applications request sensitive user data-such as photos, contacts, location, or health information-that are normally protected by entitlements and runtime privacy prompts. The fix involves tightening entitlement validation logic within the OS kernel or core system frameworks, ensuring that applications cannot circumvent the declared capabilities defined in their code signing entitlements. CPE data confirms impact across both iPhone OS (iOS) and iPadOS product lines across multiple version branches, indicating this affects Apple's mobile platform's core authorization mechanism.

RemediationAI

Vendor-released patch: iOS 18.7.3, iPadOS 18.7.3, iOS 26.2, and iPadOS 26.2. Users should immediately apply the latest available iOS or iPadOS version via Settings > General > Software Update on their device. Organizations managing fleets of Apple devices should enforce automatic update policies to ensure timely deployment of this security patch. For environments where immediate patching is constrained, restrict installation of untrusted third-party applications and review installed app permissions in Privacy settings (Settings > Privacy). Refer to Apple security advisories at https://support.apple.com/en-us/125884 and https://support.apple.com/en-us/125885 for comprehensive patch details.

More from same product – last 7 days

CVE-2026-44739 HIGH
8.7 May 27

SQL injection in Pimcore's CustomReportsBundle (versions ≤ 12.3.5) lets an authenticated user holding the reports_config
CVE-2026-5817 HIGH
8.2 May 22

Arbitrary code execution in Docker Model Runner's vllm-metal inference backend on macOS allows any container on the Dock
CVE-2026-5843 HIGH
8.2 May 22

Arbitrary code execution in Docker Desktop's Model Runner on macOS allows any container on the Docker network to escape

CVE-2025-43306 HIGH
7.8 May 26

Local privilege escalation in Apple macOS allows a malicious app already running with low privileges to elevate to root

CVE-2026-49237 HIGH
7.8 May 28

Local privilege escalation in Canonical Multipass for macOS before 1.16.3 allows a low-privileged local user to obtain r

Share

CVE-2025-46292 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy