CVE-2026-28819

EUVD-2026-29215
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to execute arbitrary code with kernel privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 18.7.9
appleiphone_os
𝑥
< 18.7.9
applemacos
14.0 ≤
𝑥
< 14.8.7
applemacos
15.0 ≤
𝑥
< 15.7.7
applemacos
26.0 ≤
𝑥
< 26.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/127111
https://support.apple.com/en-us/127115
https://support.apple.com/en-us/127116
https://support.apple.com/en-us/127117