VDB

CISA-2025-30436

CISA-2025-30436 PUBLISHED CVSS 9.1 CRITICAL

Reported by apple · Published May 12, 2025

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.4 and iPadOS 18.4. An attacker may be able to use Siri to enable Auto-Answer Calls.

Risk Scores

CVSS 3.1
9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Affected Products

VendorProductVersions
AppleiOS and iPadOSunspecified
AppleiOS and iPadOSunspecified, unspecified

Timeline

  • May 12, 2025 CVE Published
  • May 14, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›