Memory Handling Vulnerability in Apple Operating Systems
CVE-2026-20609

4.4MEDIUM

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 11 February 2026

What is CVE-2026-20609?

A vulnerability exists in multiple Apple operating systems due to improper memory handling, which can be exploited through the processing of maliciously crafted files. This may lead to a denial-of-service condition or the disclosure of sensitive memory contents, posing serious security risks. Apple has addressed this issue in recent updates, underscoring the importance of keeping devices up-to-date to mitigate potential exploitation.

Affected Version(s)

iOS and iPadOS 0 < 18.7.5

iOS and iPadOS 0 < 26.3

macOS 0 < 14.8.4

References

https://support.apple.com/en-us/126346

https://support.apple.com/en-us/126347

https://support.apple.com/en-us/126348

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2026
Vulnerability Reserved
Nov 11, 2025

CVE-2026-20609 Data

JSON