VDB

CVE-2026-20640

CVE-2026-20640 PUBLISHED CVSS 6.900000095367432 MEDIUM

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3. An attacker with physical access to iPhone may be able to take and view screenshots of sensitive data from the iPhone during iPhone Mirroring with Mac.

EPSS 0.02% · 6.8th percentile

Risk Scores

CVSS 4.0
6.900000095367432
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.02%
6.8th percentile

Affected Products

VendorProductVersions
AppleiOS and iPadOS0
appleipados0
appleiphone_os0

Timeline

  • Feb 11, 2026 CVE Published
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 16, 2026 EPSS Score
  • Feb 18, 2026 EPSS Score
  • Feb 20, 2026 EPSS Score
  • Feb 22, 2026 EPSS Score
  • Feb 24, 2026 EPSS Score
  • Feb 26, 2026 EPSS Score
  • Feb 28, 2026 EPSS Score
  • Mar 2, 2026 EPSS Score
  • Mar 4, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›