CVE-2025-31242

State: PUBLISHED · Published: 2025-05-12 · Updated: 2026-04-02 · Assigner: apple

Description

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Sonoma 14.7.6, macOS Ventura 13.7.3, macOS Ventura 13.7.6, tvOS 18.5, visionOS 2.5, watchOS 11.5. An app may be able to access sensitive user data.

CWE

CWE-200 — CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Affected

Apple / iOS and iPadOS — v=0 <18.5 [affected]
Apple / iPadOS — v=0 <17.7.7 [affected]
Apple / macOS — v=0 <13.7.3 [affected]; v=0 <13.7.6 [affected]; v=0 <14.7.3 [affected]; v=0 <14.7.6 [affected]; v=0 <15.5 [affected]
Apple / tvOS — v=0 <18.5 [affected]
Apple / visionOS — v=0 <2.5 [affected]
Apple / watchOS — v=0 <11.5 [affected]

CVSS

(none)

References

https://support.apple.com/en-us/122069
https://support.apple.com/en-us/122070
https://support.apple.com/en-us/122404
https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122716
https://support.apple.com/en-us/122717
https://support.apple.com/en-us/122718
https://support.apple.com/en-us/122720
https://support.apple.com/en-us/122721
https://support.apple.com/en-us/122722

Source

cvelistV5-main/cves/2025/31xxx/CVE-2025-31242.json