Primary

Context

Apple iOS and iPadOS Activation Lock Bypass Vulnerability

Vulnerability

Patched

A path handling vulnerability has been identified that allows a user with physical access to an iOS device to bypass Activation Lock. This issue affects Apple iOS devices and is present in versions prior to iOS 26.2 and iPadOS 26.2, as well as in iOS 18.7.7 and iPadOS 18.7.7. The vulnerability arises from inadequate validation in the path handling process, which could be exploited to manipulate Activation Lock settings.

Impact

Exploitation of this vulnerability allows for bypassing Activation Lock, a security feature designed to prevent unauthorized access to a device.

Remediation

Users can update to iOS 18.7.7, iPadOS 18.7.7, iOS 26.2, or iPadOS 26.2 to address this vulnerability.

Added: Mar 25, 2026, 2:52 AM

Updated: Mar 25, 2026, 2:52 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS and iPadOS Activation Lock Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating