Primary

Context

Apple iOS and iPadOS Keystroke Monitoring Vulnerability

Vulnerability

Patched

A vulnerability exists in iOS and iPadOS that allows an application to monitor keystrokes without user consent. This issue affects iPhone 11 and later models, as well as various iPad models, including the iPad Pro (all recent generations), iPad Air (3rd generation and later), iPad (8th generation and later), and iPad mini (5th generation and later). The vulnerability arises from insufficient checks on app permissions, potentially leading to unauthorized data access.

Impact

Exploitation of this vulnerability could result in unauthorized monitoring of user keystrokes, allowing apps to capture typed information without permission.

Remediation

Users can update to iOS 26.1 or iPadOS 26.1 to address this vulnerability.

Added: Nov 4, 2025, 2:24 AM

Updated: Nov 4, 2025, 2:24 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS and iPadOS Keystroke Monitoring Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating