Improved State Management Vulnerability in Apple Operating Systems
CVE-2025-31212

Currently unrated

Key Information:

Vendor

Apple
Status
TV OS
Mac OS
iOS And iPad OS
Visionos
Vendor
CVE Published:
12 May 2025

What is CVE-2025-31212?

This vulnerability in Apple's operating systems arises from inadequate state management, which could enable unauthorized applications to access sensitive user data without proper authorization. Remediation has been implemented in the latest versions of watchOS, tvOS, iOS, iPadOS, macOS, and visionOS, ensuring that users' data remains secure and protected. It's crucial for users to update to the latest versions to mitigate any risk associated with this issue.

Affected Version(s)

iOS and iPadOS < 18.5

macOS < 15.5

tvOS < 18.5

References

https://support.apple.com/en-us/122720
https://support.apple.com/en-us/122716
https://support.apple.com/en-us/122404

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-31212 : Improved State Management Vulnerability in Apple Operating Systems