CVE-2026-28950
medium
CVSS v3
6.2
CVSS v4 NEW
โ
VIR risk
6.2
Description
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 15.8.8 and iPadOS 15.8.8, iOS 16.7.16 and iPadOS 16.7.16, iOS 18.7.8 and iPadOS 18.7.8, iOS 26.4.2 and iPadOS 26.4.2, iPadOS 17.7.11. Notifications marked for deletion could be unexpectedly retained on the device.
Predictions
Exploit likelihood
62%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Source: Apple Security HT ยท View original โ ยท proprietary-no-redistribution
Full prose not cached โ VIR stores only structured fields (affected/fixed versions, references) for this source. Click "View original" above for the vendor's full advisory.
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| ios | 17.7.11 | fixed | |
| ios | 16.7.16 | fixed | |
| ios | 15.8.8 | fixed | |
| macos | affected | 18.7.8 |
References
- https://support.apple.com/en-us/127112
- https://support.apple.com/en-us/127113
- https://support.apple.com/en-us/127114
- https://support.apple.com/en-us/127002
- https://support.apple.com/en-us/127003
- http://seclists.org/fulldisclosure/2026/Apr/14
- http://seclists.org/fulldisclosure/2026/Apr/15
- http://seclists.org/fulldisclosure/2026/May/10
- http://seclists.org/fulldisclosure/2026/May/8
- http://seclists.org/fulldisclosure/2026/May/9
CWEs
CWE-359
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.