Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Apple | iOS and iPadOS | affected |
|
Configuration 1 [-]
|
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Apple | Ios | — | — |
| Apple | Ipad Os | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
| Link | Providers |
|---|---|
| https://support.apple.com/en-us/122066 |
|
Mon, 27 Apr 2026 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Enumeration of Installed Apps via Permission Flaw |
Tue, 27 Jan 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Apple ipados
Apple iphone Os |
|
| CPEs | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Apple ipados
Apple iphone Os |
Mon, 19 Jan 2026 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Apple
Apple ios Apple ipad Os |
|
| Vendors & Products |
Apple
Apple ios Apple ipad Os |
Fri, 16 Jan 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-200 CWE-284 |
|
| Metrics |
cvssV3_1
|
Fri, 16 Jan 2026 17:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.3 and iPadOS 18.3. An app may be able to enumerate a user's installed apps. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published:
Updated: 2026-04-02T18:22:24.170Z
Reserved: 2025-01-17T00:00:44.966Z
Link: CVE-2025-24090
Vulnrichment
Updated: 2026-01-16T18:38:48.480Z
NVD
Status : Analyzed
Published: 2026-01-16T18:16:06.540
Modified: 2026-01-27T20:25:28.387
Link: CVE-2025-24090
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-27T21:45:14Z