Primary

Context

Apple iOS and iPadOS App Enumeration Vulnerability

Vulnerability

Patched

A vulnerability exists in the LaunchServices component of Apple iOS and iPadOS, specifically in versions 26.3 and 18.7.5. This vulnerability allows an app to enumerate a user's installed applications, potentially leading to unauthorized access to user data or privacy violations. The issue arises from inadequate logging sanitation, which can be exploited to gain insights into the user's app usage.

Impact

Exploitation of this vulnerability could allow an app to access a list of installed applications on the user's device, which may include sensitive or private apps.

Remediation

Users can update to iOS 26.3 or iPadOS 26.3, or to iOS 18.7.5 or iPadOS 18.7.5, where this vulnerability has been fixed.

Added: Feb 11, 2026, 11:31 PM

Updated: Feb 11, 2026, 11:31 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS and iPadOS App Enumeration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iOS

Apple iPadOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating