Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
iOS: Physical access bypasses Activation Lock
CVE-2025-43534
Summary
A security flaw in iOS allows someone with direct access to a device to bypass a security feature that prevents unauthorized use. This means a device could be used by someone other than the owner without their permission. Update your device to the latest version to fix this issue.
Original title
A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.2 and iPadOS 26.2. A user with physical access to an iOS device may be able...
Original description
A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.2 and iPadOS 26.2. A user with physical access to an iOS device may be able to bypass Activation Lock.
Published: 25 Mar 2026 · Updated: 25 Mar 2026 · First seen: 25 Mar 2026