CVE-2026-28963 | THREATINT

Description

A privacy issue was addressed by removing the vulnerable code. This issue is fixed in iOS 26.5 and iPadOS 26.5. An attacker with physical access may be able to use Visual Intelligence to access sensitive user data during iPhone Mirroring.

PUBLISHED Reserved 2026-03-03 | Published 2026-05-11 | Updated 2026-05-11 | Assigner apple

Problem types

An attacker with physical access may be able to use Visual Intelligence to access sensitive user data during iPhone Mirroring

Product status

Any version before 26.5

affected

References

support.apple.com/en-us/127110

cve.org (CVE-2026-28963)

nvd.nist.gov (CVE-2026-28963)

Download JSON