Known Vulnerabilities for products from Apple
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Apple".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Apple can be found at device.report : Apple
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34385 | Not Provided | 2026-03-27 | 2026-03-31 | |
| CVE-2026-33874 | Gematik Authenticator securely authenticates users for login to digital health applications. Starting in version 4.12.0 and p... | Not Provided | 2026-03-27 | 2026-04-01 |
| CVE-2026-28871 | A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 ... | Not Provided | 2026-03-25 | 2026-03-30 |
| CVE-2026-27309 | Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary... | Not Provided | 2026-03-27 | 2026-03-30 |
| CVE-2026-26127 | Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network. | Not Provided | 2026-03-10 | 2026-04-01 |
| CVE-2026-5292 | Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bound... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5291 | Inappropriate implementation in WebGL in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentiall... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5290 | Use after free in Compositing in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the rend... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5289 | Use after free in Navigation in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the rende... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5288 | Use after free in WebView in Google Chrome on Android prior to 146.0.7680.178 allowed a remote attacker who had compromised t... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5287 | Use after free in PDF in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a s... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-5286 | Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a cra... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5285 | Use after free in WebGL in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-5284 | Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer pr... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5283 | Inappropriate implementation in ANGLE in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to leak cross-origin... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5282 | Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bound... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5281 | Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer pr... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2026-5280 | Use after free in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code insi... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-5279 | Object corruption in V8 in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2026-5278 | Use after free in Web MIDI in Google Chrome on Android prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary... | Not Provided | 2026-04-01 | 2026-04-01 |
Known software with vulnerabilities from Apple
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Apple | 802.11n | 7.3.1 |
| Operating System | Apple | A Ux | - |
| Application | Apple | Afp Server | - |
| Hardware | Apple | Airport Base Station | - |
| Operating System | Apple | Airport Base Station Firmware | 7.3.2 |
| Hardware | Apple | Airport Card | - |
| Hardware | Apple | Airport Express | - |
| Hardware | Apple | Airport Express Base Station Firmware | 6.1 |
| Hardware | Apple | Airport Extreme | - |
| Hardware | Apple | Airport Extreme Base Station Firmware | 5.5 |
| Application | Apple | Apache Mod Digest Apple | - |
| Hardware | Apple | Apple Airport Base Station Firmware | - |
| Application | Apple | Apple Application Support | 1.0 |
| Hardware | Apple | Apple Laserwriter | - |
| Application | Apple | Apple Mobile Device Support | 2.1.0.25 |
| Application | Apple | Apple Music | 1.2.1 |
| Application | Apple | Apple Remote Desktop | 1.2.4 |
| Application | Apple | Apple Support | 1.0 |
| Application | Apple | Apple Tv | 1.0.0 |
| Application | Apple | Applescript | - |