Out-of-Bounds Access Vulnerability in Safari, iOS, and macOS by Apple
CVE-2026-43676

Currently unrated

Key Information:

Vendor: Apple
Status: Safari; iOS And iPad OS; Mac OS
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-43676?

An out-of-bounds access issue in Safari and various Apple operating systems has been identified and addressed with enhanced bounds checking measures. Attackers could exploit this vulnerability by processing maliciously crafted web content, potentially leading to an unexpected crash of the Safari browser. Users utilizing Safari on macOS or iOS devices should ensure they are on the latest version, where this issue has been resolved.

Affected Version(s)

iOS and iPadOS 0 < 26.5.2

macOS 0 < 26.5.2

Safari 0 < 26.5.2

References

https://support.apple.com/en-us/127594

https://support.apple.com/en-us/127595

https://support.apple.com/en-us/127685

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43676 Data

JSON