CVE-2025-31267
CVE-2025-31267
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 4.6EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 jul 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
An authentication issue was addressed with improved state management. This issue is fixed in App Store Connect 3.0. An attacker with physical access to an unlocked device may be able to view sensitive user information.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
Apple · App Store ConnectReferências
https://support.apple.com/en-us/123356