Information Exposure in Apple macOS, iOS, and iPadOS
CVE-2025-43357

5.5MEDIUM

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS
Vendor: CVE Published:; 15 September 2025

What is CVE-2025-43357?

This vulnerability involves insufficient redaction of sensitive information in Apple products, allowing unauthorized applications to potentially fingerprint users. Apple has addressed this issue in macOS Tahoe 26, iOS 26, and iPadOS 26 to enhance user privacy and security.

Affected Version(s)

iOS and iPadOS < 26

macOS < 26

References

https://support.apple.com/en-us/125108

https://support.apple.com/en-us/125110

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON