Description
A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5. An attacker on the local network may be able to cause a denial-of-service.
Published: 2026-05-11
Score: 6.2 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A null pointer dereference occurs due to insufficient input validation in several Apple operating systems. When triggered, the system can crash, resulting in a loss of availability for the affected device. This flaw is classified as CWE‑476, indicating an improper null dereference vulnerability. The impact is limited to denial of service rather than confidentiality or integrity compromise.

Affected Systems

Apple iOS, iPadOS, macOS (Tahoe), and tvOS devices running versions prior to 26.5 are affected. The vulnerability is fixed in iOS 26.5, iPadOS 26.5, macOS Tahoe 26.5, and tvOS 26.5. Attackers who can send crafted input from the local network to the vulnerable component may trigger the denial of service.

Risk and Exploitability

The CVSS score is 6.2, and the EPSS score is <1%, though the vulnerability is not listed in the CISA KEV catalog. Attackers must be on the same local network to send the malicious payload from the local network to the vulnerable component may trigger the denial of service.

Generated by OpenCVE AI on May 12, 2026 at 21:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update all affected devices to iOS 26.5, iPadOS 26.5, macOS Tahoe 26.5, or tvOS 26.5 as soon as updates are available.
  • If an immediate update is not possible, use network controls (such as firewall or packet filtering) to block or monitor suspicious traffic from local network sources that could trigger the vulnerability.
  • Continuously monitor system logs for abnormal crashes or restarts that may indicate exploitation attempts, and investigate any occurrences promptly.

Generated by OpenCVE AI on May 12, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 12 May 2026 21:45:00 +0000

Type Values Removed Values Added
Title Local Network Man‑In‑The‑Middle Attack Can Trigger Denial of Service via Null Pointer Dereference in Apple Operating Systems

Tue, 12 May 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 12 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Mon, 11 May 2026 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios And Ipados
Apple macos
Apple tvos
Vendors & Products Apple
Apple ios And Ipados
Apple macos
Apple tvos

Mon, 11 May 2026 22:45:00 +0000

Type Values Removed Values Added
Title Local Network Man‑In‑The‑Middle Attack Can Trigger Denial of Service via Null Pointer Dereference in Apple Operating Systems
Weaknesses CWE-476

Mon, 11 May 2026 20:45:00 +0000

Type Values Removed Values Added
Description A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5. An attacker on the local network may be able to cause a denial-of-service.
References

Subscriptions

Apple Ios And Ipados Macos Tvos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-05-12T17:26:29.556Z

Reserved: 2026-03-03T16:36:03.994Z

Link: CVE-2026-28985

cve-icon Vulnrichment

Updated: 2026-05-12T17:26:25.790Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-11T21:18:58.520

Modified: 2026-05-12T18:16:49.627

Link: CVE-2026-28985

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T21:30:25Z

Weaknesses