Primary

Context

Apple Face Gallery Apple Account Fingerprinting Vulnerability

Vulnerability

Patched

A vulnerability exists in the Face Gallery component of Apple Watch, iOS, and iPadOS, specifically in versions prior to watchOS 11.2, iOS 18.2, and iPadOS 18.2. This vulnerability allows a system binary to fingerprint a user's Apple Account, potentially enabling tracking of the user's activity. The issue was caused by improper handling of certain flags, which has been addressed in the latest software updates.

Impact

Exploitation of this vulnerability could lead to unauthorized tracking of a user's activity by fingerprinting their Apple Account.

Remediation

Users can update to watchOS 11.2, iOS 18.2, or iPadOS 18.2 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.0

exploitability

2.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.0

exploitability

2.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Face Gallery Apple Account Fingerprinting Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple watchOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating