Description
A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.2 and iPadOS 26.2. A user with physical access to an iOS device may be able to bypass Activation Lock.
Published: 2026-03-25
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation via Activation Lock Bypass
Action: Patch Device
AI Analysis

Impact

A path handling flaw allows a user with physical access to an iOS or iPadOS device to bypass Activation Lock, effectively granting unauthorized ownership and access to device data. The weakness corresponds to improper privilege control (CWE‑284).

Affected Systems

Apple iOS and iPadOS devices running versions older than iOS 18.7.7 or iOS 26.2, and iPadOS 18.7.7 or iPadOS 26.2 are affected; the vulnerability is fixed in those and later releases.

Risk and Exploitability

The issue scores a CVSS of 6.8, indicating moderate severity, and an EPSS of less than 1%, suggesting low current exploitation probability. While not listed in CISA’s KEV catalog, the requirement for physical access limits remote threat but still poses significant risk to device owners and personal data if an adversary obtains the device.

Generated by OpenCVE AI on March 25, 2026 at 21:44 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest iOS or iPadOS update (18.7.7 or later, or 26.2 or later) to resolve the path handling flaw

Generated by OpenCVE AI on March 25, 2026 at 21:44 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Title Activation Lock Bypass via Path Handling Issue on iOS and iPadOS

Wed, 25 Mar 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple ipados
Apple iphone Os
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Vendors & Products Apple ipados
Apple iphone Os

Wed, 25 Mar 2026 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-284
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 25 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios And Ipados
Vendors & Products Apple
Apple ios And Ipados

Wed, 25 Mar 2026 01:00:00 +0000

Type Values Removed Values Added
Description A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.2 and iPadOS 26.2. A user with physical access to an iOS device may be able to bypass Activation Lock.
References

Subscriptions

Apple Ios And Ipados Ipados Iphone Os
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:26:24.135Z

Reserved: 2025-04-16T15:27:21.198Z

Link: CVE-2025-43534

cve-icon Vulnrichment

Updated: 2026-03-25T15:53:45.461Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T01:17:01.690

Modified: 2026-03-25T20:00:11.800

Link: CVE-2025-43534

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T21:48:09Z

Weaknesses