Apple visionOS
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Apple visionOS.
Recent Apple visionOS Security Advisories
| Advisory | Title | Published |
|---|---|---|
| 127120 | visionOS 26.5 - Apple Security Content | May 11, 2026 |
| 126799 | visionOS 26.4 - Apple Security Content | March 24, 2026 |
| 126353 | visionOS 26.3 - Apple Security Content | February 11, 2026 |
| 125891 | visionOS 26.2 - Apple Security Content | December 12, 2025 |
| 125638 | visionOS 26.1 - Apple Security Content | November 3, 2025 |
| 125338 | visionOS 26.0.1 - Apple Security Content | September 29, 2025 |
| 125115 | visionOS 26 - Apple Security Content | September 15, 2025 |
| 124154 | visionOS 2.6 - Apple Security Content | July 29, 2025 |
| 122721 | visionOS 2.5 - Apple Security Content | May 12, 2025 |
| 122402 | visionOS 2.4.1 - Apple Security Content | April 16, 2025 |
EOL Dates
Ensure that you are using a supported version of Apple visionOS. Here are some end of life, and end of support dates for Apple visionOS.
| Release | EOL Date | Status |
|---|---|---|
| 26 | - |
Active
|
| 2 | September 15, 2025 |
EOL
Apple visionOS 2 became EOL in 2025. |
| 1 | September 16, 2024 |
EOL
Apple visionOS 1 became EOL in 2024. |
By the Year
In 2026 there have been 116 vulnerabilities in Apple visionOS with an average score of 6.4 out of ten. Last year, in 2025 visionOS had 238 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in visionOS in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.26
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 116 | 6.35 |
| 2025 | 238 | 6.61 |
| 2024 | 121 | 6.84 |
| 2023 | 1 | 6.50 |
It may take a day or so for new visionOS vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apple visionOS Security Vulnerabilities
Apple iOS 26.5/iPadOS 26.5 Sandbox Escape via Logic Error
CVE-2026-28995
8.8 - High
- May 11, 2026
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A malicious app may be able to break out of its sandbox.
Improper Privilege Management
Apple OS Type Confusion (CVE-2026-28983) Remote DoS (fixed iOS 18.7.9)
CVE-2026-28983
7.5 - High
- May 11, 2026
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause a denial of service.
Object Type Confusion
Apple iOS/iPadOS Mem Corrupt from Malicious Image (fixed 18.7.9)
CVE-2026-28940
8.8 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing a maliciously crafted image may corrupt process memory.
Buffer Overflow
Apple iOS Updated 18.7.9 Prevents Crash from Malicious Web Content
CVE-2026-28917
4.3 - Medium
- May 11, 2026
The issue was addressed with improved input validation. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Improper Input Validation
Apple OS iOS 18.7.9 Crash via Malicious Audio Stream
CVE-2026-39869
4.3 - Medium
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing an audio stream in a maliciously crafted media file may terminate the process.
Classic Buffer Overflow
Apple WebKit Memory Crash via Crafted Web Content - fixed in 26.5
CVE-2026-28901
4.3 - Medium
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple Media Codec Memory Corruption in iOS/macOS prior 26.5
CVE-2026-28956
6.5 - Medium
- May 11, 2026
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
Out-of-bounds Read
Apple iOS/iPadOS Camera Metadata Leak Enables Capture (pre 18.7.9/26.5)
CVE-2026-28957
3.3 - Low
- May 11, 2026
An issue with app access to camera metadata was addressed with improved logic. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, visionOS 26.5. An app may be able to capture a user's screen.
Authorization
Use-After-Free in Apple OS Kernels (iOS 18.7.9+, macOS 15.7.7+)
CVE-2026-43668
7.5 - High
- May 11, 2026
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.
Dangling pointer
Apple iOS/macOS File Processing Crash (CVE202628936)
CVE-2026-28936
7.5 - High
- May 11, 2026
The issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sonoma 14.8.7, macOS Tahoe 26.5, visionOS 26.5. Processing a maliciously crafted file may lead to unexpected app termination.
Improper Input Validation
iOS/macOS tvOS Bypass Bounds Check Crash - Fixed in 18.7.9, 26.5
CVE-2026-28977
6.2 - Medium
- May 11, 2026
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing a maliciously crafted file may lead to unexpected app termination.
Buffer Overflow
Apple Safari/WebKit Info Leak via Malicious Site Fixed iOS 26.5, macOS 15.7
CVE-2026-28920
6.5 - Medium
- May 11, 2026
An information leakage was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Visiting a maliciously crafted website may leak sensitive data.
Information Disclosure
Apple iOS/iPadOS/macOS Data Leak via Consent Bypass (fixed 18.7.9)
CVE-2026-28993
5.5 - Medium
- May 11, 2026
This issue was addressed by adding an additional prompt for user consent. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, visionOS 26.5. An app may be able to access user-sensitive data.
Authorization
Apple OS iOS/macOS 26.5 Race Condition permitting sensitive data access
CVE-2026-43659
4.7 - Medium
- May 11, 2026
A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, visionOS 26.5. An app may be able to access sensitive user data.
Race Condition
Apple OS Kernel Buffer Overflow Fixed in iOS 18.7.9/Sequoia 15.7.7
CVE-2026-28897
6.2 - Medium
- May 11, 2026
A buffer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A local user may be able to cause unexpected system termination or read kernel memory.
Stack Overflow
CSP bypass in Apple OS 26.5 (iOS, iPadOS, macOS, tvOS, visionOS, watchOS)
CVE-2026-28907
8.1 - High
- May 11, 2026
The issue was addressed with improved input validation. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
Output Sanitization
Apple OS Kernel Mem Disclosure via App (fixed iOS 18.7.9+; macOS 15.7.7+)
CVE-2026-43654
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to disclose kernel memory.
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Apple OS 26.5+ Permissions Flaw Allows Privacy Preference Bypass
CVE-2026-28988
5.5 - Medium
- May 11, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, watchOS 26.5. An app may be able to bypass certain Privacy preferences.
Authorization
Apple iOS/macOS iPadOS visionOS iframe download settings flaw before 26.5
CVE-2026-28971
4.3 - Medium
- May 11, 2026
The issue was addressed with improved UI handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. A malicious iframe may use another websites download settings.
Clickjacking
Apple OS IP Tracking via State Mgmt v<18.7.9/26.5 CVE-2026-28906
CVE-2026-28906
7.5 - High
- May 11, 2026
This issue was addressed through improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, visionOS 26.5. An attacker may be able to track users through their IP address.
Privacy violation
Apple Safari: UAF Crash Vulnerability Fixed in 26.5
CVE-2026-28947
8.8 - High
- May 11, 2026
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Dangling pointer
Apple Safari 26.5 Crash via Malicious Web Content
CVE-2026-43658
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Buffer Overflow
Apple OS memory corruption (fixed iOS 18.7.9, macOS 15.7.7)
CVE-2026-28992
4.7 - Medium
- May 11, 2026
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An attacker may be able to cause unexpected app termination.
Race Condition
WebKit Crash via WebContent (iOS/iPadOS <26.5, macOS/tvOS/visionOS <26.5)
CVE-2026-28905
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple OS 26.5 Memory Handling Crash on Malicious Web Content
CVE-2026-28944
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple OSes: OOB Read DoS Before 26.5 (Fixed in 26.5)
CVE-2026-28991
7.5 - High
- May 11, 2026
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause a denial-of-service.
Out-of-bounds Read
Apple iOS/macOS 26.5 Use-After-Free in Web Rendering
CVE-2026-28883
7.5 - High
- May 11, 2026
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Dangling pointer
Inconsistent UI State Allows App Access to Sensitive Data iOS 26.5
CVE-2026-28964
7.5 - High
- May 11, 2026
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 26.5 and iPadOS 26.5, visionOS 26.5. An app may be able to access sensitive user data.
User Interface (UI) Misrepresentation of Critical Information
Apple OS Kernel OOB Write (iOS 18.7.9/iPadOS 18.7.9, macOS 15.7.7)
CVE-2026-28972
6.5 - Medium
- May 11, 2026
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination or write kernel memory.
Memory Corruption
Apple Keychain State Modification Local Attack (CVE-2026-28860)
CVE-2026-28860
7.5 - High
- May 11, 2026
The issue was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A local attacker may be able to modify the state of the Keychain.
Improper Input Validation
Apple OS Image Processing Memory Corruption (iOS 26.5, macOS Sequoia 15.7.7)
CVE-2026-28990
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing a maliciously crafted image may corrupt process memory.
Buffer Overflow
Apple iOS Use-After-Free Pre-18.7.9
CVE-2026-28969
7.5 - High
- May 11, 2026
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination.
Dangling pointer
Apple WebKit CSP Bypass before 26.5 (iOS 18.7.9, macOS 26.5)
CVE-2026-43660
7.5 - High
- May 11, 2026
A validation issue was addressed with improved logic. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
Protection Mechanism Failure
Apple iOS Memory Crash CVE-2026-28953 Fixed in 18.7.9
CVE-2026-28953
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple WebKit MemCorrupt Crash (CVE-2026-28904) fixed iOS 18.7.9+
CVE-2026-28904
7.5 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple OS 26.5 Data Exposure via Improper Protection
CVE-2026-28958
5.5 - Medium
- May 11, 2026
This issue was addressed with improved data protection. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. An app may be able to access sensitive user data.
Information Disclosure
Apple iOS AccessRestriction CVE202628962 Fixed 18.7.9/26.5
CVE-2026-28962
7.5 - High
- May 11, 2026
This issue was addressed with improved access restrictions. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may disclose sensitive user information.
Information Disclosure
Apple OS DoS via App (before 26.5)
CVE-2026-28974
7.5 - High
- May 11, 2026
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause a denial-of-service.
Authorization
Apple iOS/iPadOS macOS Memory Crash CVE-2026-28903
CVE-2026-28903
6.5 - Medium
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple iOS/macOS Buffer Overflow Causing App Termination (fixed in 18.7.9, 15.7.7)
CVE-2026-28846
7.5 - High
- May 11, 2026
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause unexpected app termination.
Stack Overflow
Safari AoF bug fixed in 26.5 via improved memory mgmt
CVE-2026-28942
6.5 - Medium
- May 11, 2026
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Dangling pointer
Apple OS Race Condition Exposing Sensitive Data (fixed iOS 26.5)
CVE-2026-28996
5.5 - Medium
- May 11, 2026
A race condition was addressed with additional validation. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to access sensitive user data.
Race Condition
Apple OS OOB write DoS (CVE-2026-43666) fixed in iOS 18.7.9 et al
CVE-2026-43666
6.2 - Medium
- May 11, 2026
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An attacker on the local network may be able to cause a denial-of-service.
Memory Corruption
Apple iOS/macos tvOS Memory Crash CVE-2026-28902
CVE-2026-28902
6.5 - Medium
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple iOS memory crash via malicious web content, fixed iOS 18.7.9/26.5
CVE-2026-28847
8.8 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple iOS/OS WebKit Crash via Malicious Web Content CVE-2026-28955
CVE-2026-28955
8.8 - High
- May 11, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Buffer Overflow
Apple OS 26.5: OOB Access via Malicious File Termination
CVE-2026-28918
6.5 - Medium
- May 11, 2026
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Parsing a maliciously crafted file may lead to an unexpected app termination.
Out-of-bounds Read
Apple OS Buffer Overflow Fixed in iOS 18.7.9, iPadOS 18.7.9, macOS 15.7.7
CVE-2026-28959
7.5 - High
- May 11, 2026
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination.
Classic Buffer Overflow
Apple iOS CVE-2025-43210 OOB Access in Media Handling Fixed in iOS 18.6
CVE-2025-43210
6.3 - Medium
- April 02, 2026
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
Out-of-bounds Read
Apple Keychain Local Access via Permission Bypass (iOS 18.7.7, macOS 15.7.5)
CVE-2026-28864
3.3 - Low
- March 25, 2026
This issue was addressed with improved permissions checking. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A local attacker may gain access to user's Keychain items.
AuthZ
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Apple visionOS or by Apple? Click the Watch button to subscribe.
