CVE-2026-28959
high
CVSS v3
7.5
CVSS v4 NEW
โ
VIR risk
7.5
Description
visionOS 26.5
Predictions
Exploit likelihood
83%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Source: Apple Security HT ยท View original โ ยท proprietary-no-redistribution
Full prose not cached โ VIR stores only structured fields (affected/fixed versions, references) for this source. Click "View original" above for the vendor's full advisory.
Affected
| Vendor | Product | Version |
|---|---|---|
| apple | Accelerate | Apple Watch Series 6 and later |
| apple | Accounts | Apple Watch Series 6 and later |
| apple | APFS | Apple Watch Series 6 and later |
| apple | App Intents | Apple Watch Series 6 and later |
| apple | AppleJPEG | Apple Watch Series 6 and later |
| apple | AppleJPEG | Apple Watch Series 6 and later |
| apple | Audio | Apple Watch Series 6 and later |
| apple | CoreSymbolication | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | IOHIDFamily | Apple Watch Series 6 and later |
| apple | IOHIDFamily | Apple Watch Series 6 and later |
| apple | IOKit | Apple Watch Series 6 and later |
| apple | IOSurfaceAccelerator | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | LaunchServices | Apple Watch Series 6 and later |
| apple | mDNSResponder | Apple Watch Series 6 and later |
| apple | mDNSResponder | Apple Watch Series 6 and later |
| apple | SceneKit | Apple Watch Series 6 and later |
| apple | Spotlight | Apple Watch Series 6 and later |
| apple | Storage | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
OS impact
macOS Mixed 4 releases
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
| 15.7.7 | Fixed | โ |
| 14.8.7 | Fixed | โ |
| โ | Affected | 18.7.9 |
apple Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
ios Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
| 18.7.9 | Fixed | โ |
tvos Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
watchos Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
References
- https://support.apple.com/en-us/127110
- https://support.apple.com/en-us/127111
- https://support.apple.com/en-us/127115
- https://support.apple.com/en-us/127116
- https://support.apple.com/en-us/127117
- https://support.apple.com/en-us/127118
- https://support.apple.com/en-us/127119
- https://support.apple.com/en-us/127120
CWEs
CWE-120
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.