A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 26.1 and iPadOS 26.1, Safari 26.1, visionOS 26.1. An app may be able to bypass certain Privacy preferences.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/125632 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/125638 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/125640 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
04 Nov 2025, 16:22
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/125632 - Release Notes, Vendor Advisory | |
| References | () https://support.apple.com/en-us/125638 - Release Notes, Vendor Advisory | |
| References | () https://support.apple.com/en-us/125640 - Release Notes, Vendor Advisory | |
| CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* |
|
| First Time |
Apple
Apple ipados Apple safari Apple visionos Apple iphone Os |
04 Nov 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
| CWE | CWE-284 |
04 Nov 2025, 02:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-11-04 02:15
Updated : 2025-11-04 16:22
NVD link : CVE-2025-43502
Mitre link : CVE-2025-43502
CVE.ORG link : CVE-2025-43502
JSON object : View
Products Affected
apple
- iphone_os
- safari
- visionos
- ipados
CWE
CWE-284
Improper Access Control