CVE-2025-30426CRITICAL 9.8EPSS p60.9%
CVE-2025-30426CVE-2025-30426
Description
This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to enumerate a user's installed apps.
Scoring
| CVSS 3.1 | 9.8 (CRITICAL) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| EPSS | 1.08% probability of exploitation · percentile 60.9% · 2026-06-19T12:03:05Z |
| Published | 2025-03-31 |
| Last modified | 2026-04-02 |
Underlying weaknesses· 1
References
- https://support.apple.com/en-us/122371
- https://support.apple.com/en-us/122372
- https://support.apple.com/en-us/122373
- https://support.apple.com/en-us/122376
- https://support.apple.com/en-us/122377
- https://support.apple.com/en-us/122378
- http://seclists.org/fulldisclosure/2025/Apr/11
- http://seclists.org/fulldisclosure/2025/Apr/12
1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Exposure of Sensitive Information to an Unauthorized Actorcwe-200 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.