Primary

Context

Apple iOS and iPadOS Mail Addressing Injection Vulnerability Leading to User Interface Spoofing

Vulnerability

Patched

A vulnerability has been identified in the Mail Addressing component of Apple iOS and iPadOS. This injection issue, present in iOS 18.5 and iPadOS 17.7.7, was addressed with improved input validation. However, the vulnerability could still be exploited by processing a malicious email, potentially leading to user interface spoofing.

Impact

Exploitation of this vulnerability may cause user interface spoofing, misleading users about the state of the application or the device.

Remediation

Users can update to iOS 18.5 or iPadOS 17.7.7 to address this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS and iPadOS Mail Addressing Injection Vulnerability Leading to User Interface Spoofing

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS 17.7.7

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating