VDB

CISA-2026-28852

CISA-2026-28852 PUBLISHED CVSS 5.5 MEDIUM

Reported by apple · Published March 25, 2026

A stack overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to cause a denial-of-service.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
AppleiOS and iPadOS0, 0
ApplemacOS0, 0
AppletvOS0
ApplevisionOS0
ApplewatchOS0
ApplemacOS0, 0, 0
AppleiOS and iPadOS0, 0, 0
ApplewatchOS0, 0
AppletvOS0, 0
ApplevisionOS0, 0

Timeline

  • Mar 25, 2026 CVE Published
  • Mar 25, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›