CVE-2025-43475 is a vulnerability identified in Apple’s iOS and iPadOS platforms related to improper logging practices that failed to adequately redact sensitive user data. Specifically, certain logs generated by the operating system or applications could inadvertently expose sensitive information to apps that have limited privileges (local access but not full system privileges). This occurs because the logging mechanism did not sufficiently sanitize or redact sensitive data before writing it to logs accessible by apps. The vulnerability is categorized under CWE-532, which relates to exposure of sensitive information through logs. Exploitation requires that an app already has some level of local privilege (e.g., installed on the device with standard app permissions) but does not require user interaction, making it a silent risk once the app is installed. The impact is primarily on confidentiality, as sensitive user data could be read by unauthorized apps, but it does not affect data integrity or system availability. Apple fixed this issue in iOS and iPadOS version 26.2 by enhancing the data redaction process in logging. No public exploits have been reported, and the CVSS v3.1 base score is 5.5, reflecting a medium severity level with the vector AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, indicating local attack vector, low complexity, low privileges required, no user interaction, unchanged scope, and high confidentiality impact.

For European organizations, this vulnerability poses a risk of sensitive data leakage from mobile devices running vulnerable versions of iOS and iPadOS. Enterprises relying on Apple mobile devices for communication, data access, or business applications could have confidential information exposed to malicious or compromised apps installed on the device. This could include personal identifiable information (PII), corporate credentials, or other sensitive data logged by the system or apps. Although exploitation requires local privileges, the widespread use of mobile devices and the possibility of installing malicious apps or compromised legitimate apps increases the risk. Data leakage could lead to privacy violations, regulatory non-compliance (e.g., GDPR), reputational damage, and potential financial losses. The absence of known exploits reduces immediate risk but does not eliminate the threat, especially as attackers may develop exploits post-disclosure. Organizations with mobile device management (MDM) solutions and strict app vetting can reduce exposure but must still ensure timely patching.

1. Immediately update all iOS and iPadOS devices to version 26.2 or later, which contains the fix for this vulnerability. 2. Enforce strict app installation policies via MDM to limit installation of untrusted or unnecessary applications that could exploit this vulnerability. 3. Audit and monitor device logs and app permissions to detect unusual access patterns or attempts to read sensitive logs. 4. Educate users about the risks of installing apps from untrusted sources and encourage use of the official Apple App Store only. 5. Implement network-level protections to detect and block suspicious app communications that could indicate exploitation attempts. 6. Review and minimize logging of sensitive data within enterprise apps to reduce exposure if logs are accessed. 7. Regularly review and update mobile security policies to incorporate emerging threats and ensure compliance with data protection regulations.