Remote Image Display Vulnerability in Apple Mail for iOS and iPadOS
CVE-2025-43280

Currently unrated

Key Information:

Vendor: Apple
Status: iOS And iPad OS
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-43280?

A vulnerability in Apple Mail enables the display of remote images when forwarding emails in Lockdown Mode. This behavior can expose users to unwanted content and potential privacy breaches. The issue has been addressed in iOS 18.6 and iPadOS 18.6 by ensuring that remote images are not loaded in these circumstances, enhancing user security and privacy.

Affected Version(s)

iOS and iPadOS < 18.6

References

https://support.apple.com/en-us/124147

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON