Description
This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to enumerate a user's installed apps.
Published: 2025-03-31
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure
Action: Patch Immediately
AI Analysis

Impact

A flaw in entitlement checks allows an application to enumerate a user’s installed apps, exposing the presence of software that may imply sensitive user behavior or preferences. This weakness is a classic information‑disclosure problem classified as CWE‑200. The high CVSS score of 9.8 indicates that the vulnerability is severe and could substantially compromise user privacy if exploited. The description does not detail how the attack is triggered, but the likely attack vector is a malicious or compromised application running with standard user privileges, from which a developer or attacker could enumerate installed apps.

Affected Systems

Apple’s operating systems are impacted: iOS 18.4, iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, and watchOS 11.4. Versions earlier than these releases are vulnerable.

Risk and Exploitability

The CVSS score of 9.8 signals a high severity rating, but the EPSS figure of less than 1 % indicates a very low likelihood that the vulnerability will be actively exploited at present. The vulnerability is not listed in CISA’s KEV catalog. The exploit would involve a malicious app on the device obtaining a list of installed applications, which could enable privacy‑breaching or credential‑guessing attacks. Because the vulnerability can be triggered by any application lacking proper entitlement checks, the attack privilege is a normal user-level app, making it broadly exploitable if no patch is applied.

Generated by OpenCVE AI on April 28, 2026 at 02:34 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update to the latest iOS 18.4 or newer release, iPadOS 18.4 or 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, or watchOS 11.4, which contain the entitlement safeguards.
  • Ensure that automatic security updates are enabled so the device receives future fixes promptly.
  • Verify that only trusted applications are installed and review app install logs in device management or security settings to detect unauthorized enumeration attempts.

Generated by OpenCVE AI on April 28, 2026 at 02:34 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-8930 This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to enumerate a user's installed apps.
History

Tue, 28 Apr 2026 03:00:00 +0000

Type Values Removed Values Added
Title Application Install Enumeration via Missing Entitlement Checks

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to enumerate a user's installed apps. This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to enumerate a user's installed apps.
References

Mon, 03 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Mon, 07 Apr 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple iphone Os
Apple macos
Apple tvos
Apple visionos
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple iphone Os
Apple macos
Apple tvos
Apple visionos

Tue, 01 Apr 2025 05:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 31 Mar 2025 22:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to enumerate a user's installed apps.
References

Subscriptions

Apple Ipados Iphone Os Macos Tvos Visionos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:23:09.540Z

Reserved: 2025-03-22T00:04:43.716Z

Link: CVE-2025-30426

cve-icon Vulnrichment

Updated: 2025-11-03T21:13:46.624Z

cve-icon NVD

Status : Modified

Published: 2025-03-31T23:15:24.940

Modified: 2026-04-02T19:19:34.150

Link: CVE-2025-30426

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T02:45:11Z

Weaknesses