What is CVE-2025-46308?

CVE-2025-46308 is a medium-severity vulnerability, classified under Improper Access Control. CVSS score: 5.3/10. Published 2026-06-11.

How severe is CVE-2025-46308?

Medium severity. CVSS v3 base score is 5.3 out of 10.

CVE-2025-46308

CVE-2025-46308

An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to leak sensitive user information.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

product-security@apple.com
product-security@apple.com

Frequently asked questions

What is CVE-2025-46308?: CVE-2025-46308 is a medium-severity vulnerability, classified under Improper Access Control. CVSS score: 5.3/10. Published 2026-06-11.
How severe is CVE-2025-46308?: Medium severity. CVSS v3 base score is 5.3 out of 10.