Primary

Context

Apple Call History Privacy Vulnerability Allowing User Fingerprinting

Vulnerability

Patched

A privacy vulnerability has been identified in the Call History component of Apple software, including macOS Tahoe 26, iOS 26, and iPadOS 26. This vulnerability allows apps to fingerprint users by accessing sensitive information without proper authorization. The issue stems from inadequate redaction of personal data, which could enable applications to track or identify users based on their call history or related metadata.

Impact

Exploitation of this vulnerability could lead to unauthorized user fingerprinting, allowing apps to track or identify users based on their call-related data.

Added: Sep 15, 2025, 11:26 PM

Updated: Sep 15, 2025, 11:26 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.0

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.0

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Call History Privacy Vulnerability Allowing User Fingerprinting

Vulnerability

Impact

Affected Products

Apple macOS Tahoe

Apple iPadOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating