Main Vulnerability Database Vulnerabilities #VU118074

#VU118074 State Issues in watchOS - CVE-2025-43459

Published: November 4, 2025

Vulnerability identifier: #VU118074

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-43459

CWE-ID: CWE-371

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
watchOS

Software vendor:
Apple Inc.

Description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improper state management in the Phone component. An attacker with physical access to a locked Apple Watch may be able to view Live Voicemail.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/125639

#VU118074 State Issues in watchOS - CVE-2025-43459

Description

Remediation

External links

Please verify you're human