This document describes the security content of App Store Connect 3.0.
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security releases page.
Apple security documents reference vulnerabilities by CVE-ID when possible.
For more information about security, see the Apple Product Security page.
Released June 09, 2025
Available for: iOS 17.0 and iPadOS 17.0 and later
Impact: An attacker with physical access to an unlocked device may be able to view sensitive user information
Description: An authentication issue was addressed with improved state management.
CVE-2025-31267: Adam Soták, Tim Klöß