This issue was addressed through improved state management. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5. An app may be able to access sensitive user data.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/122404 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/122716 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/122720 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/122721 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/122722 | Release Notes Vendor Advisory |
| http://seclists.org/fulldisclosure/2025/May/10 | |
| http://seclists.org/fulldisclosure/2025/May/12 | |
| http://seclists.org/fulldisclosure/2025/May/5 | |
| http://seclists.org/fulldisclosure/2025/May/7 |
Configurations
Configuration 1 (hide)
|
History
03 Nov 2025, 20:18
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
27 May 2025, 13:55
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-05-12 22:15
Updated : 2025-11-03 20:18
NVD link : CVE-2025-31212
Mitre link : CVE-2025-31212
CVE.ORG link : CVE-2025-31212
JSON object : View
Products Affected
apple
- watchos
- visionos
- iphone_os
- tvos
- macos
- ipados
CWE
CWE-284
Improper Access Control