PT-2026-27590 · Apple · Ios+7
Published
2026-03-24
·
Updated
2026-04-15
·
CVE-2026-28867
CVSS v3.1
6.2
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apple iOS versions prior to 18.7.7
Apple iPadOS versions prior to 18.7.7
Apple macOS Sequoia versions prior to 15.7.5
Apple macOS Tahoe versions prior to 26.4
Apple tvOS versions prior to 26.4
Apple visionOS versions prior to 26.4
Apple watchOS versions prior to 26.4
Description
This issue was addressed with improved authentication. An application may be able to leak sensitive kernel state. The issue also involves leaking TCP data via mDNSResponder.
Recommendations
Update to iOS 18.7.7 or later.
Update to iPadOS 18.7.7 or later.
Update to macOS Sequoia 15.7.5 or later.
Update to macOS Tahoe 26.4 or later.
Update to tvOS 26.4 or later.
Update to visionOS 26.4 or later.
Update to watchOS 26.4 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Sequoia
Macos Tahoe
Tvos
Visionos
Watchos