Description
The issue was addressed by adding additional logic. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Privacy Indicators for microphone or camera access may not be correctly displayed.
Published: 2025-07-29
Score: 4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Inaccurate privacy indicators may lead to users unaware of active camera or microphone usage
Action: Apply Update
AI Analysis

Impact

A coding oversight in Apple’s privacy indicator logic caused the visual alerts for active microphone or camera usage to be displayed incorrectly. As a result, users could be unaware that their device is capturing audio or video, which could be exploited for covert data collection. The weakness is a security feature failure that undermines user trust and consent mechanisms.

Affected Systems

Apple’s iOS and iPadOS operating systems are affected. The issue exists in all releases prior to iOS 18.6 and iPadOS 18.6, as well as iPadOS 17.7.9 and earlier. Users running older firmware versions should be aware of this limitation.

Risk and Exploitability

The CVSS score of 4 reflects a low severity, and the EPSS score of less than 1% indicates a very low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog, and no remote exploitation vectors are documented. The attack vector is inferred to be local—an attacker would need to trigger a scenario where the user’s privacy indicator is expected to reflect activity, but it fails to do so, allowing covert collection. Although the impact is primarily on privacy and user awareness, it does not compromise system integrity or allow further exploitation.

Generated by OpenCVE AI on April 28, 2026 at 00:34 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device to iOS 18.6, iPadOS 18.6, or iPadOS 17.7.9 or later for the fix
  • Verify that the microphone and camera icons appear correctly when the respective hardware is in use
  • Keep the operating system current by enabling automatic updates and regularly checking Apple support for related advisories

Generated by OpenCVE AI on April 28, 2026 at 00:34 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-23067 The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6. Privacy Indicators for microphone or camera access may not be correctly displayed.
History

Tue, 28 Apr 2026 01:00:00 +0000

Type Values Removed Values Added
Title Inaccurate Microphone and Camera Privacy Indicator Display

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6. Privacy Indicators for microphone or camera access may not be correctly displayed. The issue was addressed by adding additional logic. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Privacy Indicators for microphone or camera access may not be correctly displayed.

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 31 Jul 2025 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple iphone Os
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Vendors & Products Apple iphone Os

Wed, 30 Jul 2025 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-359
Metrics cvssV3_1

{'score': 4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 30 Jul 2025 11:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios
Apple ipados
Vendors & Products Apple
Apple ios
Apple ipados

Tue, 29 Jul 2025 23:45:00 +0000

Type Values Removed Values Added
Description The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6. Privacy Indicators for microphone or camera access may not be correctly displayed.
References

Subscriptions

Apple Ios Ipados Iphone Os
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:24:45.177Z

Reserved: 2025-04-16T15:24:37.089Z

Link: CVE-2025-43217

cve-icon Vulnrichment

Updated: 2025-07-30T14:45:53.980Z

cve-icon NVD

Status : Modified

Published: 2025-07-30T00:15:33.827

Modified: 2026-04-02T19:20:06.990

Link: CVE-2025-43217

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:45:17Z

Weaknesses