CVE-2025-31207

CVSS v3.1

7.7

High

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.5 iPadOS versions prior to 18.5

Description A logic issue was identified and addressed through improved checks within the FrontBoard component. This issue allows an application to potentially enumerate a user's installed applications. Reports indicate that this issue has been exploited by some App Store applications to detect the presence of TrollStore on a device.

Recommendations Update to iOS version 18.5 or later. Update to iPadOS version 18.5 or later.

Fix

SQL injection

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89CWE-200

Related Identifiers

BDU:2025-05420

CVE-2025-31207

Affected Products

Ios

Ios/Ipados

Ipados

CVE-2025-31207

Weakness Enumeration

Related Identifiers

Affected Products

References · 15