CVE-2025-46286 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-46286 PUBLISHED CVSS 4.300000190734863 MEDIUM

A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment.

EPSS 0.04% · 12.3th percentile

Risk Scores

CVSS v3.1

4.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

EPSS Score

0.04%

12.3th percentile

Affected Products

Vendor	Product	Versions
Apple	iOS and iPadOS	unspecified
apple	ipados	0
apple	iphone_os	0

Timeline

Apr 22, 2025 CVE ID Reserved
Jan 9, 2026 CVE Published
Jan 10, 2026 EPSS Score
Jan 13, 2026 EPSS Score
Jan 15, 2026 EPSS Score
Jan 18, 2026 EPSS Score
Jan 20, 2026 EPSS Score
Jan 23, 2026 EPSS Score
Jan 25, 2026 EPSS Score
Jan 28, 2026 EPSS Score
Jan 30, 2026 EPSS Score
Feb 2, 2026 EPSS Score

References

Open in Interactive Console →