Home

Description

A logic issue was addressed with improved state management. This issue is fixed in Safari 26, tvOS 26, watchOS 26, iOS 26 and iPadOS 26, visionOS 26. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.

PUBLISHED Reserved 2025-04-16 | Published 2025-11-04 | Updated 2025-11-04 | Assigner apple

Problem types

A remote attacker may be able to view leaked DNS queries with Private Relay turned on

Product status

Any version before 26
affected

Any version before 26
affected

Any version before 26
affected

Any version before 26
affected

Any version before 26
affected

References

support.apple.com/en-us/125108

support.apple.com/en-us/125113

support.apple.com/en-us/125114

support.apple.com/en-us/125115

support.apple.com/en-us/125116

cve.org (CVE-2025-43376)

nvd.nist.gov (CVE-2025-43376)

Download JSON