PT-2025-48993 · Apple · Ios/Ipados+2
Published
2025-12-03
·
Updated
2026-02-12
·
CVE-2025-43537
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 18.7.5
iPadOS versions prior to 18.7.5
Description
An issue with path handling exists due to insufficient validation. Restoring a maliciously crafted backup file may lead to modification of protected system files. Early reports suggest this is a critical OS command injection flaw, potentially allowing attackers to run unauthorized commands on affected systems.
Recommendations
Update to iOS version 18.7.5.
Update to iPadOS version 18.7.5.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ios/Ipados
Ipados
Ios