Main Vulnerability Database Vulnerabilities #VU124414

Protection mechanism failure in Apple iOS and iPadOS - CVE-2025-43534

Published: March 25, 2026

Vulnerability identifier: #VU124414

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-43534

CWE-ID: CWE-693

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Apple Inc.

Affected software:
Apple iOS
iPadOS

Detailed vulnerability description

The vulnerability allows an attacker to bypass Activation Lock.

The vulnerability exists due to insufficient implementation of security measures in iTunes Store. An attacker with physical access to device can bypass Activation Lock.

How to mitigate CVE-2025-43534

Install updates from vendor's website.

Sources

https://support.apple.com/en-us/126793

Protection mechanism failure in Apple iOS and iPadOS - CVE-2025-43534

Detailed vulnerability description

How to mitigate CVE-2025-43534

Sources

Please verify you're human