CVE-2026-28967 | THREATINT

Description

A denial-of-service issue was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4. An attacker in a privileged network position may be able to cause a denial-of-service.

PUBLISHED Reserved 2026-03-03 | Published 2026-05-11 | Updated 2026-05-11 | Assigner apple

Problem types

An attacker in a privileged network position may be able to cause a denial-of-service

Product status

Any version before 18.7.7

affected

Any version before 26.4

affected

References

support.apple.com/en-us/126792

support.apple.com/en-us/126793

cve.org (CVE-2026-28967)

nvd.nist.gov (CVE-2026-28967)

Download JSON