CVE-2026-46486
MediumCVSS 5.3Exploitation Probability (EPSS)
Low risk20th percentile - higher than 20% of all known CVEs
Summary
MVT (Mobile Verification Toolkit) has a path traversal vulnerability related to unsanitized File identifiers in iOS Backup processing prior to version 2026.5.12. This issue has been patched in version 2026.5.12.
Risk Assessment
This vulnerability may lead to unauthorized access to files in the system, posing a risk of exposing sensitive data of mobile users.
Recommendation
It is recommended to update MVT to version 2026.5.12 or later to mitigate this vulnerability.
Original NVD description (English source)
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise. Prior to version 2026.5.12, there is a path traversal vulnerability via unsanitized File identifiers in iOS Backup processing. This issue has been patched in version 2026.5.12.

