Access Restriction Flaw in Apple Products
CVE-2025-30438
5.5MEDIUM
Key Information:
- Vendor
- Apple
- Vendor
- CVE Published:
- 31 March 2025
Summary
An access restriction vulnerability exists in Apple's ecosystem, allowing malicious applications to potentially dismiss system notifications on the Lock Screen that indicate when a recording has started. This flaw affects multiple Apple operating systems and emphasizes the need for robust security measures to protect user privacy.
Affected Version(s)
iOS and iPadOS < 18.4
macOS < 15.4
macOS < 14.7
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved