← Zuruck zu CVEs
CVE-2026-28895
MEDIUM4.6
Beschreibung
The issue was addressed with improved checks. This issue is fixed in iOS 26.4 and iPadOS 26.4. An attacker with physical access to an iOS device with Stolen Device Protection enabled may be able to access biometrics-gated Protected Apps with the passcode.
CVE Details
CVSS v3.1 Bewertung4.6
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AngriffsvektorPHYSICAL
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht3/25/2026
Zuletzt geandert3/26/2026
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
apple:ipadosapple:iphone_os
Schwachen (CWE)
CWE-284
Referenzen
https://support.apple.com/en-us/126792(product-security@apple.com)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.