High severity7.5NVD Advisory· Published May 11, 2026· Updated May 13, 2026
CVE-2026-28872
CVE-2026-28872
Description
A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4. A remote attacker may be able to cause a denial-of-service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 18.7.9, = 26.4
Patches
Vulnerability mechanics
References
2- support.apple.com/en-us/126792nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127111nvdRelease NotesVendor Advisory
News mentions
1- Apple Patches Everything, (Mon, May 11th)SANS Internet Storm Center · May 11, 2026