CVE-2026-28946 | THREATINT

Description

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, macOS Tahoe 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.

PUBLISHED Reserved 2026-03-03 | Published 2026-05-11 | Updated 2026-05-13 | Assigner apple

Problem types

Processing maliciously crafted web content may lead to an unexpected Safari crash

Product status

Any version before 26.5

affected

Any version before 26.5

affected

References

support.apple.com/en-us/127115

support.apple.com/en-us/127121

cve.org (CVE-2026-28946)

nvd.nist.gov (CVE-2026-28946)

Download JSON