CVE-2025-31212

{"id": "CVE-2025-31212", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 3.9}]}, "published": "2025-05-12T22:15:22.167", "references": [{"url": "https://support.apple.com/en-us/122404", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122716", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122720", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122721", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/122722", "source": "product-security@apple.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "This issue was addressed through improved state management. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5. An app may be able to access sensitive user data."}, {"lang": "es", "value": "Este problema se solucion\u00f3 mejorando la gesti\u00f3n del estado. Est\u00e1 corregido en watchOS 11.5, tvOS 18.5, iOS 18.5 y iPadOS 18.5, macOS Sequoia 15.5 y visionOS 2.5. Una app podr\u00eda acceder a datos confidenciales del usuario."}], "lastModified": "2025-05-13T20:15:28.237", "sourceIdentifier": "product-security@apple.com"}