PT-2026-27541 · Apple · Macos Tahoe+6
Published
2026-03-24
·
Updated
2026-04-15
·
CVE-2026-20687
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 18.7.7
iPadOS versions prior to 18.7.7
iOS versions prior to 26.4
iPadOS versions prior to 26.4
macOS Sequoia versions prior to 15.7.5
macOS Tahoe versions prior to 26.4
tvOS versions prior to 26.4
watchOS versions prior to 26.4
Description
A use after free issue exists in the
AppleJPEGDriver. A use after free is a memory corruption flaw that occurs when a program continues to use a pointer after the memory it points to has been freed. This could allow an app to cause unexpected system termination or write kernel memory.Recommendations
Update to version 18.7.7 or 26.4 for iOS.
Update to version 18.7.7 or 26.4 for iPadOS.
Update to version 15.7.5 for macOS Sequoia.
Update to version 26.4 for macOS Tahoe.
Update to version 26.4 for tvOS.
Update to version 26.4 for watchOS.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Sequoia
Macos Tahoe
Tvos
Watchos