关键漏洞信息 - visionOS 26.2 发布日期 Released December 12, 2025 重要漏洞概览 App Store CVE-2025-46288: Sensitive payment token access. AppleJPEG CVE-2025-43539: Potential memory corruption. Calling Framework CVE-2025-46287: FaceTime caller ID spoofing. curl CVE-2024-7264 CVE-2025-9086 FaceTime CVE-2025-43542: Password fields may be unintentionally revealed. Foundation CVE-2025-43532: Unexpected app termination. Icons CVE-2025-46279: App identification by other apps. Kernel CVE-2025-46285: Integer overflow leading to root privileges. Messages CVE-2025-46276: Sensitive user data access. Multi-Touch CVE-2025-43533: Possible device crash with malicious HID input. Photos CVE-2025-43428: Access to hidden photos without authentication. Screen Time CVE-2025-43538: Logging issue leading to user data access. WebKit Multiple vulnerabilities leading to crashes or arbitrary code execution. 附加致谢 Anonymous contributors and teams like Golden Helm Securities, Mohammad Nosa Shandy Prastyo, etc.