CVE-2025-46311

Published: Mag 12, 2026 Last Modified: Mag 12, 2026
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,5
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none

Description

AI Translation Available

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitive user data.

451

User Interface (UI) Misrepresentation of Critical Information

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Non-Repudiation Access Control
Potential Impacts:
Hide Activities Bypass Protection Mechanism
Applicable Platforms
All platforms may be affected
View CWE Details
Operating System

Iphone Os by Apple

Product Information
Vendor Apple
Product Iphone Os
Version Range Affected
From 26.0 (inclusive)
To 26.2 (exclusive)
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ipados by Apple

Product Information
Vendor Apple
Product Ipados
Version Range Affected
To 18.7.3 (exclusive)
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Iphone Os by Apple

Product Information
Vendor Apple
Product Iphone Os
Version Range Affected
To 18.7.3 (exclusive)
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ipados by Apple

Product Information
Vendor Apple
Product Ipados
Version Range Affected
From 26.0 (inclusive)
To 26.2 (exclusive)
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://support.apple.com/en-us/125884
https://support.apple.com/en-us/125884