CVE-2026-28951

An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...

CVE-2026-28952

CVE-2026-28952 is an integer overflow that Apple fixed by improved input validation. The NVD entry states the issue can lead to an app possibly causing unexpected system termination, with fixes in iOS 18.7.9, iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, and macOS Tahoe 26.5. Related ...

CVE-2026-28952

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to cause unexpected system termination...

CVE-2026-43661

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. Processing a maliciously crafted image may corrupt process memory...

CVE-2026-28944

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2026-28944

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2026-28944

CVE-2026-28944 relates to memory-management flaws exposed by processing malicious web content, causing an unexpected process crash. It affects Apple platforms including iOS, iPadOS, macOS Tahoe, and visionOS, and is fixed in versions 26.5 for these systems (per the CVE description and linked advi...

CVE-2026-28944

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2026-28987

A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. An app may be able to leak sensitive kernel state...

CVE-2026-28929

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Replying to an email could display remote images in Mail in Lockdown Mode...

CVE-2026-28883

CVE-2026-28883 affects Apple platforms (iOS, iPadOS, macOS Tahoe, tvOS, visionOS, watchOS) prior to 26.5. A use-after-free issue in processing web content led to an unexpected process crash. The root cause is described as memory management flaws addressed by the vendor’s update to version 26.5 ac...

CVE-2026-28972

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected...

CVE-2026-28972

CVE-2026-28972 describes an out-of-bounds write vulnerability that could cause an app to terminate unexpectedly or write kernel memory. Apple specifies fixes via input validation improvements and lists affected platforms: iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7....

CVE-2026-28908

A denial of service issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to modify protected parts of the file system...

CVE-2026-28908

CVE-2026-28908 is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, and macOS Tahoe 26.5. The description indicates a denial-of-service fix achieved by removing the vulnerable code, and notes that an app may be able to modify protected parts of the filesystem. Several connected sources corrobor...

CVE-2026-28990

CVE-2026-28990 involves a memory handling flaw that may allow memory corruption when processing a specially crafted image. Apple lists this as fixed in multiple devices: iOS 26.5 and iPadOS 26.5; macOS Sequoia 15.7.7, Sonoma 14.8.7, Tahoe 26.5; tvOS 26.5; visionOS 26.5; and watchOS 26.5. The entr...

CVE-2026-28986

A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination...

CVE-2026-28986

CVE-2026-28986 is a race-condition vulnerability that Apple fixed with additional validation. According to connected sources, the issue could cause an app to trigger an unexpected system termination. It is addressed in multiple Apple OS updates: iOS 18.7.9 / iPadOS 18.7.9, iOS 26.5 / iPadOS 26.5,...

CVE-2026-28969

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected system...

CVE-2026-28969

CVE-2026-28969 is a use-after-free in the IOKit subsystem that Apple fixed by improving memory management. The vulnerability could allow an app to cause unexpected system termination. The CVE is addressed in multiple Apple OS updates: iOS 18.7.9 and iPadOS 18.7.9 iOS 26.5 and iPadOS 26.5 macOS Se...