← Voltar para CVEs

CVE-2026-28886

MEDIUM

5.9

Descricao

A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A user in a privileged network position may be able to cause a denial-of-service.

Detalhes CVE

Pontuacao CVSS v3.15.9

SeveridadeMEDIUM

Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Vetor de ataqueNETWORK

ComplexidadeHIGH

Privilegios necessariosNONE

Interacao do usuarioNONE

Publicado3/25/2026

Ultima modificacao3/25/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

apple:ipadosapple:iphone_osapple:macosapple:tvosapple:visionosapple:watchos

Fraquezas (CWE)

CWE-476

Referencias

https://support.apple.com/en-us/126792(product-security@apple.com)

https://support.apple.com/en-us/126793(product-security@apple.com)

https://support.apple.com/en-us/126794(product-security@apple.com)

https://support.apple.com/en-us/126795(product-security@apple.com)

https://support.apple.com/en-us/126796(product-security@apple.com)

https://support.apple.com/en-us/126797(product-security@apple.com)

https://support.apple.com/en-us/126798(product-security@apple.com)

https://support.apple.com/en-us/126799(product-security@apple.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.