GHSA-g835-6c4r-v6rm

GHSA-g835-6c4r-v6rm PUBLISHED CVSS 9.800000190734863 CRITICAL

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 26.4 and iPadOS 26.4. A remote user may be able to cause unexpected system termination or corrupt kernel memory.

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

Mar 25, 2026 CVE Published
Mar 25, 2026 CVE Updated
Apr 10, 2026 Security Advisory

References

https://nvd.nist.gov/vuln/detail/CVE-2026-28858 advisory
https://support.apple.com/en-us/126792 url

Open in Interactive Console →