← Volver a CVEs

CVE-2026-28886

MEDIUM

5.9

Descripcion

A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A user in a privileged network position may be able to cause a denial-of-service.

Detalles CVE

Puntuacion CVSS v3.15.9

SeveridadMEDIUM

Vector CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Vector de ataqueNETWORK

ComplejidadHIGH

Privilegios requeridosNONE

Interaccion usuarioNONE

Publicado3/25/2026

Ultima modificacion3/25/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

apple:ipadosapple:iphone_osapple:macosapple:tvosapple:visionosapple:watchos

Debilidades (CWE)

CWE-476

Referencias

https://support.apple.com/en-us/126792(product-security@apple.com)

https://support.apple.com/en-us/126793(product-security@apple.com)

https://support.apple.com/en-us/126794(product-security@apple.com)

https://support.apple.com/en-us/126795(product-security@apple.com)

https://support.apple.com/en-us/126796(product-security@apple.com)

https://support.apple.com/en-us/126797(product-security@apple.com)

https://support.apple.com/en-us/126798(product-security@apple.com)

https://support.apple.com/en-us/126799(product-security@apple.com)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.