CVE-2026-20656

A logic issue in the Safari component could allow an app to access a user’s Safari history when visiting a specially crafted website. Affected platforms include Safari on macOS (Tahoe 26.3) and WebKit-based components, and iOS/iPadOS versions 18.7.5, plus Safari 26.3 for Apple devices. The root c...

PT-2007-5829 · Apple · Iphone +2

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 3.0.4 on Windows and Mac OS X Safari in Apple iPhone version 1.1.1 Description: The issue allows remote attackers to alter or access HTTPS content via an HTTP session with a crafted web page that causes Javascript to ...