Description
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.
Published: 2025-03-31
Score: 6.6 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized access to user data via Siri on locked devices
Action: Apply Patch
AI Analysis

Impact

A control flaw allows a user with physical access to a locked device to invoke Siri and view or extract sensitive data, bypassing the expected authorization checks that should be enforced when a device is locked. The vulnerability is classified as Access Control (CWE-284) and can lead to confidentiality compromise of personal information or settings accessible through the voice assistant.

Affected Systems

Apple iOS and iPadOS devices running versions earlier than iOS 18.4 and iPadOS 18.4 (or iPadOS 17.7.6) and all macOS releases prior to macOS Sequoia 15.4, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5 are affected.

Risk and Exploitability

The risk is moderate; the CVSS score is 6.6 and the EPSS is below 1%, indicating low likelihood of exploitation. The vulnerability requires physical access and can be leveraged via the local Siri interface. It is not listed in CISA’s KEV catalog, suggesting no widespread exploitation has been observed to date.

Generated by OpenCVE AI on April 28, 2026 at 02:45 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update all Apple devices to the latest patched releases (iOS 18.4, iPadOS 18.4 or 17.7.6, macOS Sequoia 15.4, Sonoma 14.7.5, Ventura 13.7.5).
  • Disable Siri functionality when the device is locked or limit Siri’s access to user data.
  • Ensure physical security of devices by locking the device after use and employing tamper‑resistant cases or secure storage.

Generated by OpenCVE AI on April 28, 2026 at 02:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-8998 This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.
History

Tue, 28 Apr 2026 03:15:00 +0000

Type Values Removed Values Added
Title Siri Authorization Bypass on Locked Devices with Physical Access

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data. This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.

Mon, 03 Nov 2025 21:30:00 +0000

Type Values Removed Values Added
References

Mon, 07 Apr 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple iphone Os
Apple macos
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple iphone Os
Apple macos

Tue, 01 Apr 2025 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-284
Metrics cvssV3_1

{'score': 6.6, 'vector': 'CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 31 Mar 2025 22:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access may be able to use Siri to access sensitive user data.
References

Subscriptions

Apple Ipados Iphone Os Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:20:35.060Z

Reserved: 2025-01-17T00:00:44.998Z

Link: CVE-2025-24198

cve-icon Vulnrichment

Updated: 2025-11-03T21:07:26.122Z

cve-icon NVD

Status : Modified

Published: 2025-03-31T23:15:18.103

Modified: 2026-04-02T19:19:17.200

Link: CVE-2025-24198

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T03:00:10Z

Weaknesses