Primary

Context

Apple iOS and iPadOS App Protection Vulnerability Allowing Access to Biometrics-Gated Protected Apps

Vulnerability

Patched

A vulnerability exists in the App Protection feature of iOS devices with Stolen Device Protection enabled. This issue allows an attacker with physical access to the device to access biometrics-gated Protected Apps using the passcode. The vulnerability is present in iOS 26.4 and iPadOS 26.4.

Impact

Exploitation of this vulnerability could lead to unauthorized access to biometrics-protected applications on the affected device.

Remediation

Users can update to iOS 26.4 or iPadOS 26.4 to address this vulnerability.

Added: Mar 25, 2026, 1:21 AM

Updated: Mar 25, 2026, 1:21 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.4

exploitability

2.9

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.4

exploitability

2.9

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS and iPadOS App Protection Vulnerability Allowing Access to Biometrics-Gated Protected Apps

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating