Apple Ios 26.1 And Ipados vulnerabilities

CVE-2025-43440 [MEDIUM] CVE-2025-43440: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43440 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed with improved checks

CVE-2025-43422 [MEDIUM] CVE-2025-43422: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43422 Component: Stolen Device Protection Impact: An attacker with physical access to a device may be able to disable Stolen Device Protection Description: The issue was addressed by adding additional logic.

CVE-2025-43448 [MEDIUM] CVE-2025-43448: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43448 Component: CloudKit Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43391 [MEDIUM] CVE-2025-43391: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43391 Component: Photos Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2025-43392 [MEDIUM] CVE-2025-43392: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43392 Component: WebKit Canvas Impact: A website may exfiltrate image data cross-origin Description: The issue was addressed with improved handling of caches.

CVE-2025-43441 [MEDIUM] CVE-2025-43441: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43441 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2025-43458 [MEDIUM] CVE-2025-43458: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43458 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2025-43427 [MEDIUM] CVE-2025-43427: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43427 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2025-43443 [MEDIUM] CVE-2025-43443: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43443 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed with improved checks.

CVE-2025-43493 [MEDIUM] CVE-2025-43493: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43493 Component: Safari Impact: Visiting a malicious website may lead to address bar spoofing Description: The issue was addressed with improved checks.

CVE-2025-43435 [MEDIUM] CVE-2025-43435: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43435 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2025-43507 [MEDIUM] CVE-2025-43507: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43507 Component: Find My Impact: An app may be able to fingerprint the user Description: A privacy issue was addressed by moving sensitive data.

CVE-2025-43418 [MEDIUM] CVE-2025-43418: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43418 Component: Spotlight Impact: An attacker with physical access to a locked device may be able to view sensitive user information Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-43424 [MEDIUM] CVE-2025-43424: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43424 Component: Multi-Touch Impact: A malicious HID device may cause an unexpected process crash Description: The issue was addressed with improved bounds checks.

CVE-2025-43444 [MEDIUM] CVE-2025-43444: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43444 Component: Installer Impact: An app may be able to fingerprint the user Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43452 [MEDIUM] CVE-2025-43452: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43452 Component: Text Input Impact: Keyboard suggestions may display sensitive information on the lock screen Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-43385 [MEDIUM] CVE-2025-43385: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43385 Component: Model I/O Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43437 [LOW] CVE-2025-43437: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43437 Component: Managed Configuration Impact: An app may be able to fingerprint the user Description: An information disclosure issue was addressed with improved privacy controls.

CVE-2025-43350 [LOW] CVE-2025-43350: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43350 Component: Control Center Impact: An attacker may be able to view restricted content from the lock screen Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43442 [LOW] CVE-2025-43442: iOS 26.1 and iPadOS 26.1 Apple Security Update: About the security content of iOS 26.1 and iPadOS 26.1 Product: iOS 26.1 and iPadOS Version: 26.1 CVE: CVE-2025-43442 Component: Accessibility Impact: An app may be able to identify what other apps a user has installed Description: A permissions issue was addressed with additional restrictions.