Description
This issue was addressed through improved state management. This issue is fixed in iOS 26 and iPadOS 26. Private Browsing tabs may be accessed without authentication.
Published: 2025-09-15
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Access to Private Browsing Tabs
Action: Patch Now
AI Analysis

Impact

Improper state management in iOS and iPadOS allows private browsing tabs to be accessed without authentication, potentially exposing session data, browsing history, and other sensitive information to any user who can view the tab. The weakness is classified as CWE‑1390 and represents a privacy‑confidentiality breach rather than a remote code execution flaw.

Affected Systems

Apple iOS and iPadOS devices running versions prior to iOS 26 and iPadOS 26 are impacted. This includes all iPhone models with iOS earlier than 26 and all iPad models with iPadOS earlier than 26 that have the Private Browsing feature enabled.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate severity, while the EPSS score of less than 1 % shows a very low likelihood of exploitation at this time. The vulnerability is not listed in CISA’s KEV catalog. The likely attack vector is local, as the flaw permits any user with physical or local access to the device to open a private browsing tab and read its content without authentication. No remote or network‑based exploitation is described in the available data.

Generated by OpenCVE AI on April 28, 2026 at 00:17 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device to iOS 26 or iPadOS 26, which contains the state‑management fix.
  • Disable the Private Browsing feature on affected devices using device configuration profiles or the Settings app to prevent unused mitigated functionality.
  • Enable automatic system updates or schedule regular manual updates to ensure devices receive future security patches promptly.

Generated by OpenCVE AI on April 28, 2026 at 00:17 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-29341 This issue was addressed through improved state management. This issue is fixed in iOS 26 and iPadOS 26. Private Browsing tabs may be accessed without authentication.
History

Tue, 28 Apr 2026 00:45:00 +0000

Type Values Removed Values Added
Title Unauthorized Access to Private Browsing Tabs via Improper State Management

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Wed, 17 Sep 2025 13:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple iphone Os
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Vendors & Products Apple iphone Os

Wed, 17 Sep 2025 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios
Apple ipados
Vendors & Products Apple
Apple ios
Apple ipados

Tue, 16 Sep 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1390
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 15 Sep 2025 22:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed through improved state management. This issue is fixed in iOS 26 and iPadOS 26. Private Browsing tabs may be accessed without authentication.
References

Subscriptions

Apple Ios Ipados Iphone Os
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:09:50.145Z

Reserved: 2025-03-22T00:04:43.723Z

Link: CVE-2025-30468

cve-icon Vulnrichment

Updated: 2025-11-03T18:09:01.875Z

cve-icon NVD

Status : Modified

Published: 2025-09-15T23:15:29.587

Modified: 2025-11-03T19:15:49.837

Link: CVE-2025-30468

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:30:15Z

Weaknesses