CVE-2026-28905_CVE-2026-28905

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.

Basic Information

ID CVE-2026-28905

Source apple

Published May 11, 2026 at 20:08

Modified May 12, 2026 at 13:58

Affected Product

Vendor Apple

Product iOS and iPadOS

Affected Versions Apple iOS and iPadOS 0
Apple macOS 0
Apple tvOS 0
Apple visionOS 0

CWE Classification

CWE-119

References

{
    "lastseen": "",
    "description": "The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash.",
    "published": "2026-05-11T20:08:15.883Z",
    "modified": "2026-05-12T13:58:28.178Z",
    "type": "cve",
    "title": "CVE-2026-28905",
    "source": "apple",
    "references": "https://support.apple.com/en-us/127110\nhttps://support.apple.com/en-us/127115\nhttps://support.apple.com/en-us/127118\nhttps://support.apple.com/en-us/127120",
    "id": "CVE-2026-28905",
    "bulletinFamily": "",
    "cwe": [
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Apple iOS and iPadOS 0\nApple macOS 0\nApple tvOS 0\nApple visionOS 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "iOS and iPadOS",
    "version": "0",
    "vendor": "Apple",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}