iOS 18.7.2/ iPadOS 18.7.2 Privilege Escalation

MEDIUM (5.5) No Patch (42 days)
cwe-284appleiosipadosprivilege-escalationsensitive-data-access

Threat Intelligence

Low Risk
EPSS Score: 0.01% chance of exploitation (percentile: 2%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

This vulnerability allows an app to access sensitive user data without proper authorization. This is a critical issue in iOS and iPadOS devices, as it can lead to unauthorized access to personal information.

Am I affected?

You're affected if you use iOS 18.7.2 or iPadOS 18.7.2. Check with: security command on macOS (for detection) or use the built-in "Check for updates" feature in Settings > General > Software Update on your device.

Note: This is not a widely used software, so if you don't recognize the name, you're probably not affected.

Affected Products

Apple Inc. / iOS

How to fix

  1. Update to iOS 18.7.3 or later.
  2. Set NSAppTransportSecurity to NSAppTransportSecurityModeSecure in your app's Info.plist file (for immediate mitigations).

References