CVE-2025-46311

High

Published: 12 May 2026

Published

12 May 2026

Modified

12 May 2026

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Score 0.0003 10.0th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-46311 is a high-severity User Interface (UI) Misrepresentation of Critical Information (CWE-451) vulnerability in Apple Ipados. Its CVSS base score is 7.5 (High).

Operationally, ranked at the 10.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

NVD Description

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitive user data.

Deeper analysisAI

Automated synthesis unavailable for this CVE.

Details

CWE(s): CWE-451

Affected Products

apple

ipados

≤ 18.7.3 · 26.0 — 26.2

apple

iphone os

≤ 18.7.3 · 26.0 — 26.2

References

https://support.apple.com/en-us/125884
Release Notes, Vendor Advisory · product-security@apple.com