App Fingerprinting Vulnerability in Apple Operating Systems
CVE-2025-43323

8.1HIGH

Key Information:

Vendor: Apple
Status: iOS And iPad OS; TV OS; Visionos; Watch OS
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43323?

This vulnerability allows malicious applications to potentially fingerprint users by bypassing security measures. Apple has addressed this issue with additional entitlement checks in several of its operating systems, ensuring enhanced protection of user privacy and data integrity.

Affected Version(s)

iOS and iPadOS < 26

tvOS < 26

visionOS < 26

References

https://support.apple.com/en-us/125108

https://support.apple.com/en-us/125114

https://support.apple.com/en-us/125115

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON