Primary

Context

Apple iOS, iPadOS, visionOS, and Safari Privacy Preference Bypass Vulnerability

Vulnerability

Patched

A vulnerability exists that allows an app to bypass certain privacy preferences by removing sensitive data. This issue affects Apple iOS 26.1, iPadOS 26.1, visionOS 26.1, and Safari 26.1. The vulnerability arises from inadequate handling of user preferences, which may enable apps to access information or functionalities that should be restricted.

Impact

Exploitation of this vulnerability could lead to unauthorized access to user data or the ability to manipulate privacy settings, potentially allowing apps to track users or access sensitive information without permission.

Remediation

Users can update to iOS 26.1, iPadOS 26.1, visionOS 26.1, or Safari 26.1 to address this vulnerability.

Added: Nov 4, 2025, 2:20 AM

Updated: Nov 4, 2025, 2:20 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS, iPadOS, visionOS, and Safari Privacy Preference Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS

Apple Safari

Apple visionOS

Apple macOS Sonoma

Apple macOS Sequoia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating