Medium severity5.4NVD Advisory· Published May 11, 2026· Updated May 13, 2026
CVE-2026-28819
CVE-2026-28819
Description
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to execute arbitrary code with kernel privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <15.7.7
- Range: <18.7.9
- Range: <18.7.9
Patches
Vulnerability mechanics
References
4- support.apple.com/en-us/127111nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127115nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127116nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127117nvdRelease NotesVendor Advisory
News mentions
3- 18th May – Threat Intelligence ReportCheck Point Research · May 18, 2026
- ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and MoreThe Hacker News · May 18, 2026
- Apple Patches Everything, (Mon, May 11th)SANS Internet Storm Center · May 11, 2026