CVE-2025-30430CRITICAL 9.8EPSS p60.8%

CVE-2025-30430CVE-2025-30430

Description

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4, watchOS 11.4. Password autofill may fill in passwords after failing authentication.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS1.08% probability of exploitation · percentile 60.8% · 2026-06-18T12:00:27Z
Published2025-03-31
Last modified2026-04-02

Underlying weaknesses· 1

CWE-287

References

  1. https://support.apple.com/en-us/122371
  2. https://support.apple.com/en-us/122373
  3. https://support.apple.com/en-us/122376
  4. https://support.apple.com/en-us/122378
  5. http://seclists.org/fulldisclosure/2025/Apr/12
  6. http://seclists.org/fulldisclosure/2025/Apr/13
  7. http://seclists.org/fulldisclosure/2025/Apr/4
  8. http://seclists.org/fulldisclosure/2025/Apr/8

1

TypeTargetConfidenceTier
WeaknessImproper Authenticationcwe-2870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-31229
CVE
CVE-2025-31255
CVE
CVE-2025-24245
CVE
CVE-2025-31183
CVE
CVE-2025-43323
CVE
CVE-2025-43362
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.