Description
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to execute arbitrary code with kernel privileges.
Published: 2026-05-11
Score: 5.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A vulnerability involving an out‑of‑bounds write was identified in Apple operating systems. The flaw enables an application to overwrite memory beyond intended bounds, potentially granting the code execution with kernel privileges. Such escalation could allow an attacker to compromise system integrity and confidentiality by running arbitrary code at the highest execution level.

Affected Systems

Apple’s iOS and iPadOS versions through 18.7.8, macOS Sequoia 15.7.6, macOS Sonoma 14.8.6, and macOS Tahoe 26.4 are likely affected based on the versioning pattern and the fixed releases listed, though only the fixed versions are explicitly documented.

Risk and Exploitability

The vulnerability carries a CVSS score of 5.4, indicating moderate severity, and is not listed in the CISA KEV catalog. The EPSS score is below 1 %, implying a low probability of exploitation. Based on the description, the likely attack vector involves a local application that can trigger the out‑of‑bounds write; remote exploitation would require additional conditions not detailed in the advisory.

Generated by OpenCVE AI on May 12, 2026 at 21:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update iOS to version 18.7.9 or later
  • Update iPadOS to version 18.7.9 or later
  • Update macOS to the latest release: Sequoia 15.7.7, Sonoma 14.8.7, or Tahoe 26.5

Generated by OpenCVE AI on May 12, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 05:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 12 May 2026 21:45:00 +0000

Type Values Removed Values Added
Title Kernel Privilege Escalation via Out‑of‑Bounds Write in Apple iOS, iPadOS, and macOS

Tue, 12 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N'}

Mon, 11 May 2026 23:00:00 +0000

Type Values Removed Values Added
Title Kernel Privilege Escalation via Out‑of‑Bounds Write in Apple iOS, iPadOS, and macOS
Weaknesses CWE-122
CWE-787

Mon, 11 May 2026 22:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios And Ipados
Apple macos
Vendors & Products Apple
Apple ios And Ipados
Apple macos

Mon, 11 May 2026 20:45:00 +0000

Type Values Removed Values Added
Description An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to execute arbitrary code with kernel privileges.
References

Subscriptions

Apple Ios And Ipados Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-05-13T03:57:43.156Z

Reserved: 2026-03-03T16:36:03.967Z

Link: CVE-2026-28819

cve-icon Vulnrichment

Updated: 2026-05-12T17:19:58.483Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-11T21:18:50.937

Modified: 2026-05-12T18:16:47.213

Link: CVE-2026-28819

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T21:30:25Z

Weaknesses