Double Free Vulnerability in Apple’s iOS, iPadOS, and macOS Products
CVE-2026-43706

Currently unrated

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-43706?

A double free vulnerability in Apple's iOS, iPadOS, and macOS products was identified, relating to inadequate memory management practices. This flaw could potentially allow attackers to craft malicious web content that triggers unexpected process crashes, affecting the stability and security of devices running the affected operating systems. The issue was addressed in the updates for iOS 26.5.2, iPadOS 26.5.2, and macOS Tahoe 26.5.2, aimed at improving overall memory handling to mitigate potential exploitation.

Affected Version(s)

iOS and iPadOS 0 < 26.5.2

macOS 0 < 26.5.2

References

https://support.apple.com/en-us/127594

https://support.apple.com/en-us/127595

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43706 Data

JSON