CVE-2026-28965
Received Received - Intake
Privacy Issue in iOS and iPadOS Allows Lock Screen Content Exposure

Publication date: 2026-05-11

Last updated on: 2026-05-11

Assigner: Apple Inc.

Description
A privacy issue was addressed with improved checks. This issue is fixed in iOS 26.5 and iPadOS 26.5. A user may be able to view restricted content from the lock screen.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-11
Last Modified
2026-05-11
Generated
2026-06-21
AI Q&A
2026-05-12
EPSS Evaluated
2026-06-20
NVD
CVE-2026-28965
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
apple ios 26.5
apple ipad_os 26.5
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a privacy issue in Apple iOS and iPadOS where a user may be able to view restricted content from the lock screen. The issue was addressed by implementing improved checks to prevent unauthorized access to such content.

Impact Analysis

The vulnerability could allow someone to view restricted or private content on your device without unlocking it, potentially exposing sensitive information.

Mitigation Strategies

To mitigate this vulnerability, update your devices to iOS 26.5 or iPadOS 26.5 where the issue has been fixed.

Compliance Impact

This vulnerability allows a user to view restricted content from the lock screen, which constitutes a privacy issue.

Such unauthorized access to restricted content could potentially lead to non-compliance with privacy regulations and standards like GDPR and HIPAA, which require protection of sensitive personal information.

However, specific impacts on compliance are not detailed in the provided information.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-28965. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart