Apple watchOS
Moderate fix1 remedy
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*
Moderate fix1 remedy
Apple Privacy Vulnerability in StoreKit Component Allows App to Identify Installed Apps
Vulnerability
Patched
A privacy vulnerability has been identified in the StoreKit component of various Apple operating systems, including watchOS 26.3, tvOS 26.3, macOS Tahoe 26.3, macOS Sonoma 14.8.4, iOS 18.7.5, iPadOS 18.7.5, and visionOS 26.3. This vulnerability allows an app to determine which other apps a user has installed, potentially leading to unauthorized data exposure or privacy breaches.
Impact
Exploitation of this vulnerability could allow an app to enumerate a user's installed applications, potentially leading to privacy violations or unauthorized data access.
Remediation
Users can update to the latest version of the operating system to address this vulnerability. Instructions for updating can be found on the Apple Support website.
Added: Feb 11, 2026, 11:48 PM
Updated: Feb 11, 2026, 11:48 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
0.6exploitability
3.3remediation
7.7relevance
2.7threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.