What is the CVSS score of CVE-2025-66555?

CVE-2025-66555 has a CVSS 4.0 base score of 8.8 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N. EPSS exploitation probability: 0.4%.

Which versions of iOS are affected by CVE-2025-66555?

CVE-2025-66555 in AirKeyboard iOS App 1.0.5 allows remote attackers to gain unauthorized input control over affected iOS devices without authentication or user interaction.

Is there a public PoC exploit available for CVE-2025-66555?

Yes, a public proof-of-concept exploit is available for CVE-2025-66555. Prioritise patching immediately. EPSS: 0.4%.

How to fix or mitigate CVE-2025-66555?

Within 24 hours: Issue security alert to all users identifying AirKeyboard as a prohibited application and block app distribution via MDM. Within 7 days: Mandate immediate uninstallation of AirKeyboard across all managed iOS devices; conduct inventory of affected devices and audit logs for suspicious input activity. Within 30 days: Identify alternative keyboard solutions if required for business use, implement app allowlist policy to prevent reinstallation, and require password resets for users who had the app installed.

iOS CVE-2025-66555

EUVD-2025-201279 HIGH

Missing Authentication for Critical Function (CWE-306)

2025-12-04 disclosure@vulncheck.com

Authentication Bypass Apple iOS

8.8

CVSS 4.0

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 16:35 euvd

EUVD-2025-201279

Analysis Generated

Mar 15, 2026 - 16:35 vuln.today

PoC Detected

Dec 08, 2025 - 18:27 vuln.today

Public exploit code

CVE Published

Dec 04, 2025 - 21:16 nvd

HIGH 8.8

DescriptionNVD

AirKeyboard iOS App 1.0.5 contains a missing authentication vulnerability that allows unauthenticated attackers to type arbitrary keystrokes directly into the victim's iOS device in real-time without user interaction, resulting in full remote input control.

Analysis

Technical ContextAI

An authentication bypass vulnerability allows attackers to circumvent login mechanisms and gain unauthorized access without valid credentials. This vulnerability is classified as Missing Authentication for Critical Function (CWE-306).

RemediationAI

Implement robust authentication mechanisms. Use multi-factor authentication. Review authentication logic for bypass conditions. Remove default credentials.

More from same product – last 7 days

CVE-2026-44739 HIGH This Week

8.7 May 27

SQL injection in Pimcore's CustomReportsBundle (versions ≤ 12.3.5) lets an authenticated user holding the reports_config

CVE-2026-5817 HIGH This Week

8.2 May 22

Arbitrary code execution in Docker Model Runner's vllm-metal inference backend on macOS allows any container on the Dock

CVE-2026-5843 HIGH This Week

8.2 May 22

Arbitrary code execution in Docker Desktop's Model Runner on macOS allows any container on the Docker network to escape

CVE-2025-43306 HIGH This Week

7.8 May 26

Local privilege escalation in Apple macOS allows a malicious app already running with low privileges to elevate to root

CVE-2026-49237 HIGH This Week

7.8 May 28

Local privilege escalation in Canonical Multipass for macOS before 1.16.3 allows a low-privileged local user to obtain r

CVE-2025-66555 vulnerability details – vuln.today

Back