CVE-2026-28969
Use After Free in Apple iOS and iPadOS
Publication date: 2026-05-11
Last updated on: 2026-05-11
Assigner: Apple Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apple | ios | 18.7.9 |
| apple | ipados | 18.7.9 |
| apple | ios | 26.5 |
| apple | ipados | 26.5 |
| apple | macos_sequoia | 15.7.7 |
| apple | macos_sonoma | 14.8.7 |
| apple | macos_tahoe | 26.5 |
| apple | tvos | 26.5 |
| apple | visionos | 26.5 |
| apple | watchos | 26.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a use after free issue, which means that a program continues to use memory after it has been freed. This can lead to unpredictable behavior or crashes. In this case, the issue was addressed by improving memory management in various Apple operating systems.
Specifically, an app may be able to cause unexpected system termination due to this vulnerability.
How can this vulnerability impact me? :
The vulnerability can allow an app to cause unexpected system termination, which means your device or system could crash or restart unexpectedly. This can disrupt normal use and potentially lead to data loss or instability.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update your Apple devices to the fixed versions of the operating systems as soon as possible.
- Update iOS devices to iOS 18.7.9 or iOS 26.5.
- Update iPadOS devices to iPadOS 18.7.9 or iPadOS 26.5.
- Update macOS devices to macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, or macOS Tahoe 26.5.
- Update tvOS devices to tvOS 26.5.
- Update visionOS devices to visionOS 26.5.
- Update watchOS devices to watchOS 26.5.
These updates include improved memory management that addresses the use after free issue which could cause unexpected system termination.