CVE-2026-28991

high

Published 2026-05-11 · Modified 2026-05-13

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v4 NEW

—

not yet in upstream

VIR risk

7.5

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause a denial-of-service.

Predictions

Exploit likelihood

83%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Apple Security HT · View original ↗ · proprietary-no-redistribution

Full prose not cached — VIR stores only structured fields (affected/fixed versions, references) for this source. Click "View original" above for the vendor's full advisory.

Affected

Vendor	Product	Version
apple	Accelerate	`macOS Tahoe`
apple	Accounts	`macOS Tahoe`
apple	APFS	`macOS Tahoe`
apple	App Intents	`macOS Tahoe`
apple	AppleJPEG	`macOS Tahoe`
apple	AppleJPEG	`macOS Tahoe`
apple	Audio	`macOS Tahoe`
apple	CoreMedia	`macOS Tahoe`
apple	CoreServices	`macOS Tahoe`
apple	CoreSymbolication	`macOS Tahoe`
apple	CUPS	`macOS Tahoe`
apple	FileProvider	`macOS Tahoe`
apple	GPU Drivers	`macOS Tahoe`
apple	HFS	`macOS Tahoe`
apple	ImageIO	`macOS Tahoe`
apple	ImageIO	`macOS Tahoe`
apple	ImageIO	`macOS Tahoe`
apple	Installer	`macOS Tahoe`
apple	IOHIDFamily	`macOS Tahoe`
apple	IOHIDFamily	`macOS Tahoe`
apple	IOKit	`macOS Tahoe`
apple	IOSurfaceAccelerator	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`
apple	Kernel	`macOS Tahoe`

OS impact

OS	Version	Status	Fixed in
ios	26.5	fixed
macos	26.5	fixed
tvos	26.5	fixed
macos		affected	`26.5`

References

CWEs

CWE-125

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.