CNNVD-202509-1950 Information
CNNVD ID
CNNVD-202509-1950
Related CVE
- CNNVD Published: 2025-09-15
Description (Chinese)
Apple iOS等都是美国苹果(Apple)公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。Apple visionOS是一款适用于AR眼镜的操作系统。 Apple多款产品存在安全漏洞,该漏洞源于目录路径处理不当,可能导致应用程序访问敏感用户数据。以下产品及版本受到影响:macOS Sonoma 14.8之前版本、macOS Sequoia 15.7之前版本、visionOS 26之前版本、watchOS 26之前版本、macOS Tahoe 26之前版本、iOS 26之前版本和iPadOS 26之前版本。
Description (English)
Apple iOS and others are American Apple products. Apple iOS is an operating system developed for mobile devices. Apple iPados is an operating system for iPad tablets. Apple VisionOS is an operating system for AR glasses. There is a security loophole in the Apple multi-products, which stems from the inappropriate handling of the directory path, which may result in applications accessing sensitive user data. The following products and versions were affected: pre-macos Sonoma 14.8, pre-macos Sequoia 15.7, pre-vision OS 26, pre-watch OS 26, pre-macos Tahoe 26, pre-iOS 26 and pre-iPados 26.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
苹果
Published
2025-09-15
Last Modified
2026-02-24
References
https://support.apple.com/en-us/125115 https://support.apple.com/en-us/125116 https://support.apple.com/en-us/125110 http://seclists.org/fulldisclosure/2025/Sep/57 https://support.apple.com/en-us/125111 http://seclists.org/fulldisclosure/2025/Sep/58 https://support.apple.com/en-us/125112 http://seclists.org/fulldisclosure/2025/Sep/53 http://seclists.org/fulldisclosure/2025/Sep/54 http://seclists.org/fulldisclosure/2025/Sep/55 https://support.apple.com/en-us/125108 https://access.redhat.com/security/cve/cve-2025-43190
Patch
https://support.apple.com/en-us/125108
Share on: