Main Vulnerability Database Vulnerabilities #VU108997

#VU108997 Protection Mechanism Failure in Apple iOS and iPadOS - CVE-2025-30436

Published: May 13, 2025

Vulnerability identifier: #VU108997

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-30436

CWE-ID: CWE-693

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Apple iOS
iPadOS

Software vendor:
Apple Inc.

Description

The vulnerability allows an attacker to bypass implemented security restrictions.

The vulnerability exists due to insufficient implementation of security measures in Siri. An attacker with physical access to device can use Siri to enable Auto-Answer Calls.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/122371

#VU108997 Protection Mechanism Failure in Apple iOS and iPadOS - CVE-2025-30436

Description

Remediation

External links

Please verify you're human