Access Restriction Flaw in Apple Products
CVE-2025-30438

5.5MEDIUM

Key Information:

Vendor
Apple
Vendor
CVE Published:
31 March 2025

Summary

An access restriction vulnerability exists in Apple's ecosystem, allowing malicious applications to potentially dismiss system notifications on the Lock Screen that indicate when a recording has started. This flaw affects multiple Apple operating systems and emphasizes the need for robust security measures to protect user privacy.

Affected Version(s)

iOS and iPadOS < 18.4

macOS < 15.4

macOS < 14.7

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.