Apple Safari 26.5.1 Cross-Origin Info Leak
CVE-2026-43700 Published on June 29, 2026

A cross-origin issue was addressed with improved tracking of security origins. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may disclose sensitive user information.

NVD

Products Associated with CVE-2026-43700

Want to know whenever a new CVE is published for Apple products? stack.watch will email you.

Apple iOS

Apple iPadOS

Apple macOS

Apple Safari

Apple Ios And Ipados

Affected Versions

Apple Safari:

Before 26.5.2 is affected.

Apple iOS and iPadOS:

Before 26.5.2 is affected.

Apple macOS:

Before 26.5.2 is affected.