PT-2025-18939 · Apple · Ios+2

Duy Trần

Publicado

2025-05-03

Atualizado

2026-03-25

CVE-2025-31207

CVSS v3.1

7.7

Alta

Vetor

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.5 iPadOS versions prior to 18.5

Description A logic issue was identified and addressed through improved checks within the FrontBoard component. This issue allows an application to potentially enumerate a user's installed applications. Reports indicate that this issue has been exploited by some App Store applications to detect the presence of TrollStore on a device.

Recommendations Update to iOS version 18.5 or later. Update to iPadOS version 18.5 or later.

Correção

SQL injection

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89CWE-200

Identificadores relacionados

BDU:2025-05420

CVE-2025-31207

Produtos afetados

Ios

Ios/Ipados

Ipados

PT-2025-18939 · Apple · Ios+2

CVE-2025-31207

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 15