Apple Ios 26.2 And Ipados vulnerabilities

CVE-2025-43428 [CRITICAL] CVE-2025-43428: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43428 Component: Photos Impact: Photos in the Hidden Photos Album may be viewed without authentication Description: A configuration issue was addressed with additional restrictions.

CVE-2025-14174 [HIGH] CVE-2025-14174: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-14174 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-1417

CVE-2025-46290 [HIGH] CVE-2025-46290: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46290 Component: Security Impact: A remote attacker may be able to cause a denial-of-service Description: A logic issue was addressed with improved checks.

CVE-2025-43539 [HIGH] CVE-2025-43539: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43539 Component: AppleJPEG Impact: Processing a file may lead to memory corruption Description: The issue was addressed with improved bounds checks.

CVE-2025-9086 [HIGH] CVE-2025-9086: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-9086 Component: CVE-2025-9086

CVE-2025-46285 [HIGH] CVE-2025-46285: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46285 Component: Kernel Impact: An app may be able to gain root privileges Description: An integer overflow was addressed by adopting 64-bit timestamps.

CVE-2025-43529 [HIGH] CVE-2025-43529: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43529 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-1417

CVE-2025-43542 [HIGH] CVE-2025-43542: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43542 Component: FaceTime Impact: Password fields may be unintentionally revealed when remotely controlling a device over FaceTime Description: This issue was addressed with improved state management.

CVE-2025-43538 [MEDIUM] CVE-2025-43538: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43538 Component: Screen Time Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43534 [MEDIUM] CVE-2025-43534: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43534 Component: Icons Impact: An app may be able to identify what other apps a user has installed Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43536 [MEDIUM] CVE-2025-43536: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43536 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-46292 [MEDIUM] CVE-2025-46292: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46292 Component: Telephony Impact: An app may be able to access user-sensitive data Description: This issue was addressed with additional entitlement checks.

CVE-2025-46302 [MEDIUM] CVE-2025-46302: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46302 Component: Multi-Touch Impact: A malicious HID device may cause an unexpected process crash Description: The issue was addressed with improved bounds checks.

CVE-2025-43475 [MEDIUM] CVE-2025-43475: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43475 Component: MediaExperience Impact: An app may be able to access user-sensitive data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43533 [MEDIUM] CVE-2025-43533: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43533 Component: Multi-Touch Impact: A malicious HID device may cause an unexpected process crash Description: The issue was addressed with improved bounds checks.

CVE-2025-46301 [MEDIUM] CVE-2025-46301: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46301 Component: Multi-Touch Impact: A malicious HID device may cause an unexpected process crash Description: The issue was addressed with improved bounds checks.

CVE-2025-46300 [MEDIUM] CVE-2025-46300: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46300 Component: Multi-Touch Impact: A malicious HID device may cause an unexpected process crash Description: The issue was addressed with improved bounds checks.

CVE-2025-43541 [MEDIUM] CVE-2025-43541: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-43541 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A type confusion issue was addressed with improved state handling.

CVE-2025-46286 [MEDIUM] CVE-2025-46286: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2025-46286 Component: BiometricKit Impact: Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment Description: A logic issue was addressed with improved validation.

CVE-2024-7264 [MEDIUM] CVE-2024-7264: iOS 26.2 and iPadOS 26.2 Apple Security Update: About the security content of iOS 26.2 and iPadOS 26.2 Product: iOS 26.2 and iPadOS Version: 26.2 CVE: CVE-2024-7264 Component: CVE-2024-7264