Information Exposure in Apple macOS, iOS, and iPadOS
CVE-2025-43357

5.5MEDIUM

Key Information:

Vendor

Apple

Vendor
CVE Published:
15 September 2025

What is CVE-2025-43357?

This vulnerability involves insufficient redaction of sensitive information in Apple products, allowing unauthorized applications to potentially fingerprint users. Apple has addressed this issue in macOS Tahoe 26, iOS 26, and iPadOS 26 to enhance user privacy and security.

Affected Version(s)

iOS and iPadOS < 26

macOS < 26

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.