Apple Ios 26.1 And Ipados vulnerabilities

CVE-2025-43455 [MEDIUM] CVE-2025-43455: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43455 Impact: A malicious app may be able to take a screenshot of sensitive information in embedded views Description: A privacy issue was addressed with improved checks.

CVE-2025-43384 [MEDIUM] CVE-2025-43384: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43384 Component: Model I/O Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43430 [MEDIUM] CVE-2025-43430: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43430 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2025-43379 [MEDIUM] CVE-2025-43379: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43379 Component: AppleMobileFileIntegrity Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43447 [MEDIUM] CVE-2025-43447: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43447 Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.

CVE-2025-43389 [MEDIUM] CVE-2025-43389: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43389 Component: Notes Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed by removing the vulnerable code.

CVE-2025-43503 [MEDIUM] CVE-2025-43503: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43503 Component: Safari Impact: Visiting a malicious website may lead to user interface spoofing Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2025-43445 [MEDIUM] CVE-2025-43445: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43445 Component: CoreText Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2025-43439 [MEDIUM] CVE-2025-43439: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43439 Component: On-device Intelligence Impact: An app may be able to fingerprint the user Description: A privacy issue was addressed by removing sensitive data.

CVE-2025-43429 [MEDIUM] CVE-2025-43429: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43429 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-43460 [MEDIUM] CVE-2025-43460: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43460 Component: Status Bar Impact: An attacker with physical access to a locked device may be able to view sensitive user information Description: A logic issue was addressed with improved checks.

CVE-2025-43425 [MEDIUM] CVE-2025-43425: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43425 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2025-43438 [MEDIUM] CVE-2025-43438: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43438 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-43426 [MEDIUM] CVE-2025-43426: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43426 Component: Contacts Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43398 [MEDIUM] CVE-2025-43398: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43398 Component: Kernel Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved memory handling.

CVE-2025-43457 [MEDIUM] CVE-2025-43457: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43457 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-43421 [MEDIUM] CVE-2025-43421: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43421 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: Multiple issues were addressed by disabling array allocation sinking.

CVE-2025-43495 [MEDIUM] CVE-2025-43495: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43495 Component: WebKit Impact: An app may be able to monitor keystrokes without user permission Description: The issue was addressed with improved checks.

CVE-2025-43520 [MEDIUM] CVE-2025-43520: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43520 Component: Kernel Impact: A malicious application may be able to cause unexpected system termination or write kernel memory Description: A memory corruption issue was addressed with improved memory handling.

CVE-2025-43498 [MEDIUM] CVE-2025-43498: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43498 Component: FileProvider Impact: An app may be able to access sensitive user data Description: An authorization issue was addressed with improved state management.