apple

8,695 tracked vulnerabilities.

CVE-2026-28871 MEDIUM
Safari < 26.4 - Cross-Site Scripting via Maliciously Crafted Website
Mar 25, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-28870 MEDIUM
iOS and iPadOS < 18.7.9 and < 26.4 - Unprotected User Data Exposure
Mar 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-28868 MEDIUM
iOS and iPadOS < 18.7.7 - Sensitive Information Disclosure via Log File Insertion
Mar 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-28867 MEDIUM
iOS and iPadOS < 18.7.7 - Unauthenticated Kernel State Leak
Mar 25, 2026
CVSS 6.2
EPSS 0.00
CVE-2026-28866 MEDIUM
iOS and iPadOS < 18.7.7 - Unauthenticated Sensitive Data Exposure via Symlink Validation Bypass
Mar 25, 2026
CVSS 6.2
EPSS 0.00
CVE-2026-28865 HIGH
iOS and iPadOS < 18.7.7 - Authentication Bypass via Improved State Management
Mar 25, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-28864 LOW
iOS and iPadOS < 18.7.7 - Incorrect Authorization
Mar 25, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-28863 MEDIUM
iOS and iPadOS < 26.4 - Unauthorized User Fingerprinting via Permissions Issue
Mar 25, 2026
CVSS 6.5
EPSS 0.01
CVE-2026-28862 MEDIUM
macOS < 14.8.5, < 15.7.5, < 26.4 - Unprotected User Data Exposure via Log Entry Redaction
Mar 25, 2026
CVSS 5.3
EPSS 0.01
CVE-2026-28861 MEDIUM
Safari < 26.4 - Cross-Site Scripting via Script Message Handler Origin Confusion
Mar 25, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-28859 MEDIUM
Safari < 26.4 - Out-of-bounds Read
Mar 25, 2026
CVSS 4.3
EPSS 0.01
CVE-2026-28858 CRITICAL
iOS and iPadOS < 26.4 - Remote Denial of Service and Memory Corruption via Buffer Overflow
Mar 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-28857 MEDIUM
Safari < 26.4 - Out-of-bounds Read via Malicious Web Content
Mar 25, 2026
CVSS 6.5
EPSS 0.01
CVE-2026-28856 MEDIUM
iOS and iPadOS < 26.4 - Unauthenticated Sensitive User Information Exposure via Locked Device
Mar 25, 2026
CVSS 4.6
EPSS 0.00
CVE-2026-28855 HIGH
iOS and iPadOS < 26.3 - Unprotected User Data Exposure via Permissions Issue
Mar 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-28852 MEDIUM
iOS and iPadOS < 18.7.7 - Denial of Service via Stack Overflow
Mar 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-28845 MEDIUM
macOS < 26.4 - Unprotected User Data Exposure via Authorization Issue
Mar 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-28844 MEDIUM
macOS < 26.4 - Unprotected User Data Exposure via File Access Issue
Mar 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-28842 HIGH
macOS < 26.4 - Heap-based Buffer Overflow
Mar 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-28841 MEDIUM
macOS < 26.4 - Buffer Overflow via Improved Size Validation
Mar 25, 2026
CVSS 6.2
EPSS 0.00
CVE-2026-28839 MEDIUM
macOS < 14.8.5, < 15.7.5, < 26.4 - Unprotected User Data Exposure via Improper Authorization
Mar 25, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-28838 MEDIUM
macOS <14.8.5 - Privilege Escalation
Mar 25, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-28837 HIGH
macOS < 26.4 - Unprotected User Data Exposure via Logic Issue
Mar 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-28835 MEDIUM
macOS < 14.8.5, < 15.7.5, < 26.4 - Use-After-Free via Malicious SMB Network Share
Mar 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-28834 MEDIUM
macOS < 14.8.5, < 15.7.5, < 26.4 - Denial of Service via Race Condition
Mar 25, 2026
CVSS 5.1
EPSS 0.00