Critical severity9.8NVD Advisory· Published Dec 17, 2025· Updated Apr 2, 2026
CVE-2025-43428
CVE-2025-43428
Description
A configuration issue was addressed with additional restrictions. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Photos in the Hidden Photos Album may be viewed without authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <26.2
- (no CPE)range: <=26.2
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*range: <26.2
- (no CPE)range: <=26.2
- Range: <=26.2
- Range: <=26.2
Patches
Vulnerability mechanics
References
3- support.apple.com/en-us/125884nvdRelease NotesVendor Advisory
- support.apple.com/en-us/125886nvdRelease NotesVendor Advisory
- support.apple.com/en-us/125891nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.