Primary

Context

Apple iOS, iPadOS, macOS, and watchOS Authorization Vulnerability Allowing Access to Sensitive User Data

Vulnerability

Patched

A vulnerability exists in iOS 26, iPadOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, watchOS 26, and tvOS 26, where an application may gain unauthorized access to sensitive user information. This issue stems from an authorization flaw that was addressed by enhancing state management and permissions. The vulnerability could potentially be exploited by apps to access private data without proper authorization.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data by applications.

Remediation

Users can update to the latest versions of iOS, iPadOS, macOS, watchOS, and tvOS to address this vulnerability.

Added: Sep 16, 2025, 12:52 AM

Updated: Sep 16, 2025, 12:52 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

4.7

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

4.7

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS, iPadOS, macOS, and watchOS Authorization Vulnerability Allowing Access to Sensitive User Data

Vulnerability

Impact

Remediation

Affected Products

tvOS 26

watchOS 26

iOS 26

iPadOS 26

macOS Sonoma 14.8

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating