Memory Handling Flaw in Apple Products
CVE-2026-28901

Currently unrated

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 11 May 2026

What is CVE-2026-28901?

A memory handling vulnerability exists in Apple's operating systems which may allow maliciously crafted web content to disrupt normal operations, potentially resulting in unexpected process crashes. This issue has been addressed in recent updates across various Apple platforms including iOS, iPadOS, macOS, tvOS, visionOS, and watchOS to improve system resilience.

Affected Version(s)

iOS and iPadOS 0 < 26.5

macOS 0 < 26.5

tvOS 0 < 26.5

References

https://support.apple.com/en-us/127110

https://support.apple.com/en-us/127115

https://support.apple.com/en-us/127118

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 11, 2026
Vulnerability Reserved
Mar 3, 2026

CVE-2026-28901 Data

JSON