Main Vulnerability Database Vulnerabilities #VU113557

Permissions, Privileges, and Access Controls in Apple iOS and iPadOS - CVE-2025-31229

Published: July 31, 2025

Vulnerability identifier: #VU113557

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-31229

CWE-ID: CWE-264

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Apple Inc.

Affected software:
Apple iOS
iPadOS

Detailed vulnerability description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improperly imposed security restrictions within the Accessibility feature that allows to read the passcode aloud via the VoiceOver feature.

How to mitigate CVE-2025-31229

Install updates from vendor's website.

Sources

https://support.apple.com/en-us/124147

Permissions, Privileges, and Access Controls in Apple iOS and iPadOS - CVE-2025-31229

Detailed vulnerability description

How to mitigate CVE-2025-31229

Sources

Please verify you're human