CVE-2025-43323

Опубликовано: 04 нояб. 2025

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 26, tvOS 26, iOS 26 and iPadOS 26, watchOS 26. An app may be able to fingerprint the user.

Ссылки

https://support.apple.com/en-us/125108
Release Notes
Vendor Advisory
https://support.apple.com/en-us/125114
Release Notes
Vendor Advisory
https://support.apple.com/en-us/125115
Release Notes
Vendor Advisory
https://support.apple.com/en-us/125116
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

Версия до 26.0 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 26.0 (исключая)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Версия до 26.0 (исключая)

cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*

Версия до 26.0 (исключая)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Версия до 26.0 (исключая)

EPSS

Процентиль: 13%

0.00044

Низкий

8.1 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-q5rc-jpfc-cqxx

CVSS3: 8.1

github

3 месяца назад

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 26, tvOS 26, iOS 26 and iPadOS 26, watchOS 26. An app may be able to fingerprint the user.

EPSS

Процентиль: 13%

0.00044

Низкий

8.1 High

CVSS3

Дефекты

CWE-200