CVE-2025-43360Sensitive Information Exposure in Apple IOS AND Ipados

CWE-200Sensitive Information Exposure4 documents4 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 96.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple IOS AND IpadosApple IpadosApple Iphone OS
Timeline
PublishedNov 4

Description

The issue was addressed with improved UI. This issue is fixed in iOS 26 and iPadOS 26. Password fields may be unintentionally revealed.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDapple/ipados< 26.0
CVEListV5apple/ios_and_ipados< 26
NVDapple/iphone_os< 26.0

🔴Vulnerability Details

2
GHSA
GHSA-2gfx-6fr5-5qv6: The issue was addressed with improved UI2025-11-04
CVEList
CVE-2025-43360: The issue was addressed with improved UI2025-11-04

📋Vendor Advisories

1
Apple
CVE-2025-43360: iOS 26 and iPadOS 262025-09-15
CVE-2025-43360 — Sensitive Information Exposure | cvebase