PT-2026-39781 · Apple · Visionos+6
Vitaly Simonovich
·
Published
2026-05-11
·
Updated
2026-05-16
·
CVE-2026-28917
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 18.7.9
iPadOS versions prior to 18.7.9
iOS versions prior to 26.5
iPadOS versions prior to 26.5
macOS Tahoe versions prior to 26.5
tvOS versions prior to 26.5
visionOS versions prior to 26.5
watchOS versions prior to 26.5
Description
Processing maliciously crafted web content may lead to an unexpected process crash. The issue is caused by insufficient input validation.
Recommendations
Update to iOS 18.7.9
Update to iPadOS 18.7.9
Update to iOS 26.5
Update to iPadOS 26.5
Update to macOS Tahoe 26.5
Update to tvOS 26.5
Update to visionOS 26.5
Update to watchOS 26.5
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Ipados
Macos Tahoe
Tvos
Visionos
Watchos