Primary

Context

Apple Password Autofill Authentication Bypass Vulnerability

Vulnerability

Patched

A vulnerability exists in the Password Autofill feature of Apple iOS, iPadOS, visionOS, and macOS Sequoia. This vulnerability allows the autofill feature to incorrectly fill in passwords after a failed authentication attempt. The issue arises from inadequate state management, which has been improved in the latest versions of these operating systems.

Impact

Exploitation of this vulnerability could lead to unauthorized password autofill, potentially allowing users to bypass authentication requirements in apps or services.

Remediation

Users can update to iOS 18.4, iPadOS 18.4, visionOS 2.4, or macOS Sequoia 15.4 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Password Autofill Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple visionOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating