CVE-2025-43358HIGH 8.8EPSS p19.2%

CVE-2025-43358CVE-2025-43358

Description

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. A shortcut may be able to bypass sandbox restrictions.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS0.28% probability of exploitation · percentile 19.2% · 2026-06-19T12:03:05Z
Published2025-09-15
Last modified2026-04-02

Underlying weaknesses· 1

CWE-862

References

  1. https://support.apple.com/en-us/125108
  2. https://support.apple.com/en-us/125109
  3. https://support.apple.com/en-us/125110
  4. https://support.apple.com/en-us/125111
  5. https://support.apple.com/en-us/125112
  6. http://seclists.org/fulldisclosure/2025/Sep/49
  7. http://seclists.org/fulldisclosure/2025/Sep/53
  8. http://seclists.org/fulldisclosure/2025/Sep/54

1

TypeTargetConfidenceTier
WeaknessMissing Authorizationcwe-8620%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-43329
CVE
CVE-2025-30433
CVE
CVE-2025-30465
CVE
CVE-2026-20677
CVE
CVE-2025-43371
CVE
CVE-2025-24178
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.