Out-of-Bounds Access Vulnerability in Safari and Apple Products
CVE-2026-28979

Currently unrated

Key Information:

Vendor: Apple
Status: Safari; iOS And iPad OS; Mac OS
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-28979?

An out-of-bounds access issue has been identified in Safari and other Apple products, leading to potential crashes when processing specially crafted web content. This vulnerability arises due to insufficient bounds checking, risking stability and exploitation. Apple has addressed the issue in versions 26.5.2 for Safari, iOS, iPadOS, and macOS Tahoe, making it essential for users to update and apply the latest patches to ensure their systems are secure. Always exercise caution when handling web content and keep software updated to mitigate risks.

Affected Version(s)

iOS and iPadOS 0 < 26.5.2

macOS 0 < 26.5.2

Safari 0 < 26.5.2

References

https://support.apple.com/en-us/127594

https://support.apple.com/en-us/127595

https://support.apple.com/en-us/127685

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
Mar 3, 2026

CVE-2026-28979 Data

JSON