CVE-2026-11799
Description
UXSS vulnerability in Focus and Klar for iOS Webkit navigation allows for high impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
UXSS vulnerability in Focus and Klar for iOS Webkit navigation allows for high impact.
Vulnerability
A User Exploitable Cross-Site Scripting (UXSS) vulnerability exists in the Webkit navigation component of Focus for iOS and Klar for iOS. This vulnerability affects versions prior to Focus for iOS 151.3.1 and Klar for iOS 151.3.1 [1].
Exploitation
An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The exact conditions or sequence of steps required for exploitation are not detailed in the available references, but it is a UXSS vulnerability, implying user interaction is necessary [1, 2].
Impact
This vulnerability has a high impact. A successful exploit could lead to arbitrary code execution within the context of the affected application, potentially compromising user data or application functionality [1].
Mitigation
The vulnerability is fixed in Focus for iOS version 151.3.1 and Klar for iOS version 151.3.1, released on June 9, 2026 [1]. Users are advised to update to the latest versions to mitigate this risk.
AI Insight generated on Jun 9, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: = 151.3.1
- Range: = 151.3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.