Buffer Overflow Vulnerability in Apple Operating Systems
CVE-2026-28897

Currently unrated

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 11 May 2026

What is CVE-2026-28897?

A buffer overflow vulnerability has been identified in various Apple operating systems, which may allow local users to cause unexpected system termination or read sensitive kernel memory. Improved input validation has been applied to mitigate this issue. Users are advised to update their systems to the latest versions to ensure protection against this vulnerability.

Affected Version(s)

iOS and iPadOS 0 < 18.7.9

iOS and iPadOS 0 < 26.5

macOS 0 < 14.8.7

References

https://support.apple.com/en-us/127110

https://support.apple.com/en-us/127111

https://support.apple.com/en-us/127115

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 11, 2026
Vulnerability Reserved
Mar 3, 2026

CVE-2026-28897 Data

JSON