|
71
|
8.1
-
|
HIGH
Network
|
The issue was addressed with improved input validation. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS…
|
CWE-20 CWE-116
Improper Input Validation Improper Encoding or Escaping of Output
|
CVE-2026-28907
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.5
|
2026-05-14 23:32
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
72
|
7.5
-
|
HIGH
Network
|
This issue was addressed through improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5,…
|
CWE-359
Exposure of Private Personal Information to an Unauthorized Actor
|
CVE-2026-28906
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.5
|
2026-05-13 23:03
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
73
|
7.5
-
|
HIGH
Network
|
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing maliciously crafted web con…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-28905
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
26.5
|
2026-05-14 06:16
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
74
|
7.5
-
|
HIGH
Network
|
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-28904
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.5
|
2026-05-14 06:16
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
75
|
6.5
-
|
MEDIUM
Network
|
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-28903
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.5
|
2026-05-14 23:32
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
76
|
6.5
-
|
MEDIUM
Network
|
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-28902
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
26.5
|
2026-05-14 23:32
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
77
|
4.3
-
|
MEDIUM
Network
|
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-28901
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
26.5
|
2026-05-14 06:16
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
78
|
6.2
-
|
MEDIUM
Local
|
A buffer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 2…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-28897
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.5
|
2026-05-13 02:27
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
79
|
7.5
-
|
HIGH
Network
|
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processin…
|
CWE-416
Use After Free
|
CVE-2026-28883
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
26.5
|
2026-05-14 06:16
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
80
|
7.5
-
|
HIGH
Network
|
This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4. An app may be able to circumvent App Privacy Report logging.
|
CWE-863
Incorrect Authorization
|
CVE-2026-28873
|
cpe:2.3:o:apple:iphone_os:*:*
|
26.0
|
|
|
18.7.9 26.4
|
2026-05-14 23:01
2026-05-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|