Description
A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination.
Published: 2026-06-29
Score: 4.7 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A race condition in Apple operating systems was discovered in which concurrent processes can corrupt internal state handling. If an application triggers this flaw it may cause the entire system to crash unexpectedly, potentially disrupting user data and availability. The weakness follows the definition of a race condition flaw and is consistent with the commonly cataloged CWE‑850.

Affected Systems

Apple iOS and iPadOS systems prior to version 26.5.2, and macOS Tahoe prior to version 26.5.2, are impacted. The exact affected releases are those running older versions than the fixed 26.5.2 update. No additional versions or sub‑products are listed.

Risk and Exploitability

The CVE entry does not provide a CVSS score or EPSS value, and the vulnerability is not listed in CISA's KEV catalog. Because the weakness involves application‑initiated race conditions, the likely attack vector is confined to apps running with sufficient privileges. No further exploit conditions or remote vectors are described, so the risk is considered limited to software with the race condition flaw until a patch is applied.

Generated by OpenCVE AI on June 29, 2026 at 21:40 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device to iOS 26.5.2 or later, iPadOS 26.5.2 or later, or macOS Tahoe 26.5.2 or later.
  • Ensure automatic updates are enabled to receive the latest security patches as soon as they become available.
  • Validate that the operating system version displayed on the device matches the patched release; if not, perform a forced update or reinstall the OS.

Generated by OpenCVE AI on June 29, 2026 at 21:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 29 Jun 2026 22:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-362
Metrics cvssV3_1

{'score': 4.7, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 29 Jun 2026 22:00:00 +0000

Type Values Removed Values Added
Title Race Condition Leading to Unexpected System Termination in Apple iOS, iPadOS, and macOS 26.5.2
Weaknesses CWE-850

Mon, 29 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Description A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination.
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-06-29T21:25:23.979Z

Reserved: 2026-05-01T22:46:21.647Z

Link: CVE-2026-43743

cve-icon Vulnrichment

Updated: 2026-06-29T21:25:18.924Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T21:45:04Z

Weaknesses
  • CWE-362

    Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

  • CWE-850