CVE-2026-28870

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple iOS, iPadOS, macOS, tvOS, visionOS, watchOS versions prior to 26.4

Description An issue exists where an application may be able to access sensitive user data due to insufficient validation. There is no information available regarding the number of potentially affected devices or any real-world incidents where this issue was exploited.

Recommendations Update to iOS 26.4 or later. Update to iPadOS 26.4 or later. Update to macOS Tahoe 26.4 or later. Update to tvOS 26.4 or later. Update to visionOS 26.4 or later. Update to watchOS 26.4 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-28870

Affected Products

Apple Macos

Ios

Ipados

Macos Tahoe

Tvos

Visionos

Watchos

CVE-2026-28870

Related Identifiers

Affected Products

References · 11