This vulnerability arises from a race condition in the handling of symbolic links within Apple iOS and iPadOS shortcuts, which could allow a shortcut to bypass sandbox restrictions. The sandbox is a critical security mechanism that isolates app processes to prevent unauthorized access to system resources or other apps. The race condition is addressed by improved symbolic link handling in the fixed versions. The CVSS v3.1 base score is 9.0, indicating critical severity with network attack vector, high complexity, no privileges required, no user interaction, scope changed, and high impact on confidentiality, integrity, and availability.

Successful exploitation could allow an attacker to bypass sandbox restrictions, potentially leading to unauthorized access to sensitive data, modification of system or app data, and disruption of system availability. The vulnerability affects confidentiality, integrity, and availability at a high level. There are no known exploits in the wild at this time.

Apple has released official fixes for this vulnerability in iOS 18.7.5, iPadOS 18.7.5, iOS 26.3, and iPadOS 26.3, as well as in macOS Sonoma 14.8.4, macOS Tahoe 26.3, and visionOS 26.3. Users and administrators should apply these updates promptly to remediate the issue. Since this is not a cloud service, remediation depends on applying these patches. Patch status is confirmed as fixed in these versions.