Medium severity5.5NVD Advisory· Published Feb 11, 2026· Updated Apr 2, 2026

CVE-2025-43537

Description

A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.2 and iPadOS 26.2. Restoring a maliciously crafted backup file may lead to modification of protected system files.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A path handling vulnerability in iOS and iPadOS allows restoring a malicious backup to modify protected system files, fixed in iOS 18.7.5/26.2 and iPadOS 18.7.5/26.2.

Vulnerability

Overview

CVE-2025-43537 is a path handling issue in iOS and iPadOS that arises from insufficient validation during the backup restoration process. The flaw allows a specially crafted backup file to bypass normal file system protections, enabling modification of protected system files [1][2].

Exploitation

Prerequisites

An attacker must deliver a maliciously crafted backup file to the target device and convince the user to restore it. This could be achieved through physical access or social engineering, such as tricking the user into restoring a backup from an untrusted source. No additional authentication is required beyond the normal backup restoration flow.

Impact

Successful exploitation leads to modification of protected system files, which could allow an attacker to alter system behavior, escalate privileges, or establish persistent unauthorized access. The severity is rated Medium (CVSS 5.5) due to the requirement for user interaction and physical access or social engineering.

Mitigation

Apple has addressed the issue in iOS 18.7.5 and iPadOS 18.7.5 for older devices, and iOS 26.2 and iPadOS 26.2 for newer models [1][2]. Users are advised to update to the latest available version. No workarounds have been published.

References

AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Ipados2 versions
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <18.7.5
- (no CPE)range: <18.7.5, <26.2
Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <18.7.5
Cisco Systems, Inc./Cisco iOSllm-fuzzy
Range: <18.7.5, <26.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/en-us/126347nvdRelease NotesVendor Advisory
support.apple.com/en-us/125884nvd

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000