CVE-2026-28969
Description
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A use-after-free vulnerability in Apple OSes could allow an app to cause unexpected system termination, patched in recent updates.
Vulnerability
CVE-2026-28969 is a use-after-free issue in Apple operating systems, resulting from improper memory management. An application could exploit this to cause unexpected system termination, effectively a denial-of-service condition.
Attack
Vector The vulnerability can be triggered locally by a malicious or compromised app running on the device. No special privileges or network access are required; the app can directly cause memory corruption through a use-after-free flaw.
Impact
Successful exploitation leads to unexpected system termination, crashing the device and causing a denial of service. This could disrupt user operations and potentially allow repeated crashes.
Mitigation
Apple addressed the issue with improved memory management in the following updates: iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, and watchOS 26.5 [1][2]. Users should install the latest updates for their devices.
AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: Sequoia <=15.7.6 before 15.7.7, Sonoma <=14.8.6 before 14.8.7, Tahoe <=26.4 before 26.5
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- support.apple.com/en-us/127110nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127111nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127115nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127116nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127117nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127118nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127119nvdRelease NotesVendor Advisory
- support.apple.com/en-us/127120nvdRelease NotesVendor Advisory
News mentions
1- Apple Patches Everything, (Mon, May 11th)SANS Internet Storm Center · May 11, 2026