Description
A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. An app may be able to access associated usernames and websites in a user's iCloud Keychain.
Published: 2025-05-12
Score: 7.6 High
EPSS: < 1% Very Low
KEV: No
Impact: Sensitive data exposure
Action: Patch Now
AI Analysis

Impact

A logging flaw allows an application to read usernames and website names stored in a user’s iCloud Keychain, resulting in disclosure of confidential credentials. The vulnerability stems from insufficient redaction of sensitive data prior to logging, a weakness categorized as CWE-532. The exposed data may let an attacker glean personal login information and browsing habits, compromising user privacy and potentially facilitating credential theft.

Affected Systems

Apple devices running iPadOS 17.7.7 or earlier, macOS Sequoia 15.5 or earlier, macOS Sonoma 14.7.6 or earlier, or macOS Ventura 13.7.6 or earlier are impacted. The issue has been resolved in the cited OS releases.

Risk and Exploitability

The CVSS score of 7.6 indicates a high severity, whereas the EPSS score of < 1% suggests a low likelihood of exploitation at the time of analysis. The vulnerability is not listed in the CISA KEV catalog. Based on the description, the likely attack vector involves a malicious or compromised third‑party app that can read the system logs where the usernames and websites were inadvertently recorded. The adversary would then extract the exposed data, enabling credential theft or enumeration of services accessed by the user.

Generated by OpenCVE AI on April 28, 2026 at 01:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update all affected Apple devices to iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.6, or macOS Ventura 13.7.6.
  • Configure Keychain access controls to limit third‑party apps from reading usernames and website data; adjust app permissions or disable shared Keychain access as appropriate.
  • Review application log files to remove any stored usernames or website names that may have been logged, and configure logging mechanisms to redact sensitive information.

Generated by OpenCVE AI on April 28, 2026 at 01:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-14503 A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to access associated usernames and websites in a user's iCloud Keychain.
History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to access associated usernames and websites in a user's iCloud Keychain. A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. An app may be able to access associated usernames and websites in a user's iCloud Keychain.

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Tue, 27 May 2025 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple macos
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple macos

Tue, 13 May 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-532
Metrics cvssV3_1

{'score': 7.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 12 May 2025 21:45:00 +0000

Type Values Removed Values Added
Description A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to access associated usernames and websites in a user's iCloud Keychain.
References

Subscriptions

Apple Ipados Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:12:50.688Z

Reserved: 2025-03-27T16:13:58.316Z

Link: CVE-2025-31213

cve-icon Vulnrichment

Updated: 2025-11-03T19:49:17.928Z

cve-icon NVD

Status : Modified

Published: 2025-05-12T22:15:22.257

Modified: 2026-04-02T19:19:48.647

Link: CVE-2025-31213

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T02:00:15Z

Weaknesses