CVE-2025-43452

Description

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 26.1 and iPadOS 26.1. Keyboard suggestions may display sensitive information on the lock screen.

CVSS Details

CVSS Score

4.6

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Configurations (Affected Products)

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* - VULNERABLE

iOS < 26.1

iPadOS < 26.1

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// CVE-2025-43452 PoC - iOS/iPadOS Lock Screen Keyboard Suggestion Information Disclosure
// Note: This is a conceptual PoC as physical access is required

/*
Attack Scenario:
1. Attacker gains physical access to a locked iOS/iPadOS device
2. Attacker navigates to an input field (e.g., in Messages, Notes, etc.)
3. Attacker observes the keyboard suggestions displayed
4. Suggestions may contain sensitive information based on:
   - User's typing history
   - Contacts
   - Messages
   - Passwords (if autofill is enabled)

This PoC demonstrates the observation phase:
*/

// Steps to reproduce:
// 1. Lock iOS/iPadOS device
// 2. Wake device to lock screen
// 3. Attempt to access any input field
// 4. Observe keyboard suggestions
// 5. Note any sensitive information displayed

// Example observation points:
const observationPoints = {
    'lock_screen_input': 'Check if keyboard suggestions appear',
    'suggestion_content': 'Analyze if suggestions contain sensitive data',
    'autofill_suggestions': 'Check for password/credential suggestions',
    'contact_suggestions': 'Look for contact name/number suggestions'
};

// Note: Actual exploitation requires physical device access
// This is a non-technical PoC focused on observation rather than code execution

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-43452
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-43452
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-43452/
[4] VulDB https://vuldb.com/cve/CVE-2025-43452
[5] https://support.apple.com/en-us/125632

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-43452", "sourceIdentifier": "[email protected]", "published": "2025-11-04T02:15:50.837", "lastModified": "2025-11-05T15:15:37.240", "vulnStatus": "Modified", "cveTags": [], "descriptions": [{"lang": "en", "value": "This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 26.1 and iPadOS 26.1. Keyboard suggestions may display sensitive information on the lock screen."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "baseScore": 4.6, "baseSeverity": "MEDIUM", "attackVector": "PHYSICAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.9, "impactScore": 3.6}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-359"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "6D51AEDC-9086-4010-B3BF-C652D65D09C8"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "3981A7BE-BC98-4C6F-AE38-D68839368925"}]}]}], "references": [{"url": "https://support.apple.com/en-us/125632", "source": "[email protected]", "tags": ["Release Notes", "Vendor Advisory"]}]}}