Authentication Bypass in iPadOS and iOS by Apple
CVE-2025-31228

Currently unrated

Key Information:

Vendor

Apple
Status
iPad OS
iOS And iPad OS
Vendor
CVE Published:
12 May 2025

What is CVE-2025-31228?

A vulnerability exists in Apple’s iPadOS and iOS that allows an attacker with physical access to the device to potentially view notes directly from the lock screen, rather than being required to authenticate. This issue has been addressed with improved authentication measures ensuring that sensitive information remains protected.

Affected Version(s)

iOS and iPadOS < 18.5

iPadOS < 17.7

References

https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122404

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-31228 : Authentication Bypass in iPadOS and iOS by Apple