CVE-2026-28942
Summary
| CVE | CVE-2026-28942 |
|---|---|
| State | PUBLISHED |
| Assigner | apple |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-05-11 21:18:55 UTC |
| Updated | 2026-05-12 14:13:03 UTC |
| Description | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash. |
Risk And Classification
Problem Types: Processing maliciously crafted web content may lead to an unexpected Safari crash
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Apple | IOS And IPadOS | affected 26.5 custom | Not specified |
| CNA | Apple | MacOS | affected 26.5 custom | Not specified |
| CNA | Apple | TvOS | affected 26.5 custom | Not specified |
| CNA | Apple | VisionOS | affected 26.5 custom | Not specified |
| CNA | Apple | WatchOS | affected 26.5 custom | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| support.apple.com/en-us/127118 | [email protected] | support.apple.com | |
| support.apple.com/en-us/127115 | [email protected] | support.apple.com | |
| support.apple.com/en-us/127120 | [email protected] | support.apple.com | |
| support.apple.com/en-us/127119 | [email protected] | support.apple.com | |
| support.apple.com/en-us/127110 | [email protected] | support.apple.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.