PT-2026-39762 · Apple · Ipados+6

Daniel Rhea

Published

2026-05-11

Updated

2026-06-15

CVE-2026-28847

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.9 iOS versions prior to 26.5 iPadOS versions prior to 18.7.9 iPadOS versions prior to 26.5 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 visionOS versions prior to 26.5 watchOS versions prior to 26.5

Description Processing maliciously crafted web content may lead to an unexpected process crash due to improper memory handling.

Recommendations Update to iOS 18.7.9 Update to iOS 26.5 Update to iPadOS 18.7.9 Update to iPadOS 26.5 Update to macOS Tahoe 26.5 Update to tvOS 26.5 Update to visionOS 26.5 Update to watchOS 26.5

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2026:25918

ALSA-2026:25927

CVE-2026-28847

SUSE-SU-2026:2376-1

SUSE-SU-2026:2378-1

ZDI-26-313

Affected Products

Apple Macos

Ios

Ipados

Macos Tahoe

Tvos

Visionos

Watchos

PT-2026-39762 · Apple · Ipados+6

CVE-2026-28847

Weakness Enumeration

Related Identifiers

Affected Products

References · 88