CVE-2025-46287
Published: 12 December 2025
Summary
CVE-2025-46287 is a medium-severity User Interface (UI) Misrepresentation of Critical Information (CWE-451) vulnerability in Apple Macos. Its CVSS base score is 6.5 (Medium).
Operationally, ranked at the 20.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-203134
Vulnerability details
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2, visionOS 26.2, watchOS 26.2. An…
more
attacker may be able to spoof their FaceTime caller ID.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.