CVE-2025-31229CRITICAL 9.1EPSS p47.4%

CVE-2025-31229CVE-2025-31229

Description

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.6 and iPadOS 18.6. Passcode may be read aloud by VoiceOver.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS0.68% probability of exploitation · percentile 47.4% · 2026-06-18T12:00:27Z
Published2025-07-30
Last modified2025-11-03

Underlying weaknesses· 1

CWE-261

References

  1. https://support.apple.com/en-us/124147
  2. http://seclists.org/fulldisclosure/2025/Jul/30

1

TypeTargetConfidenceTier
WeaknessWeak Encoding for Passwordcwe-2610%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-30430
CVE
CVE-2025-43362
CVE
CVE-2025-30436
CVE
CVE-2025-43347
CVE
CVE-2025-31234
CVE
CVE-2025-31279
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.