VIR Vulnerability Intelligence Relay

CVE-2026-28991

high
Published 2026-05-11 ยท Modified 2026-05-13
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
7.5

Description

visionOS 26.5

Predictions

Exploit likelihood
83%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Apple Security HT ยท View original โ†— ยท proprietary-no-redistribution
Full prose not cached โ€” VIR stores only structured fields (affected/fixed versions, references) for this source. Click "View original" above for the vendor's full advisory.

Affected

VendorProductVersion
appleAcceleratemacOS Tahoe
appleAccountsmacOS Tahoe
appleAPFSmacOS Tahoe
appleApp IntentsmacOS Tahoe
appleAppleJPEGmacOS Tahoe
appleAppleJPEGmacOS Tahoe
appleAudiomacOS Tahoe
appleCoreMediamacOS Tahoe
appleCoreServicesmacOS Tahoe
appleCoreSymbolicationmacOS Tahoe
appleCUPSmacOS Tahoe
appleFileProvidermacOS Tahoe
appleGPU DriversmacOS Tahoe
appleHFSmacOS Tahoe
appleImageIOmacOS Tahoe
appleImageIOmacOS Tahoe
appleImageIOmacOS Tahoe
appleInstallermacOS Tahoe
appleIOHIDFamilymacOS Tahoe
appleIOHIDFamilymacOS Tahoe
appleIOKitmacOS Tahoe
appleIOSurfaceAcceleratormacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe
appleKernelmacOS Tahoe

OS impact
macos macOS Mixed 2 releases
VersionStatusFixed in
26.5 Fixed โ€”
โ€” Affected 26.5
apple Fixed 1 release
VersionStatusFixed in
26.5 Fixed โ€”
ios Fixed 1 release
VersionStatusFixed in
26.5 Fixed โ€”
tvos Fixed 1 release
VersionStatusFixed in
26.5 Fixed โ€”
watchos Fixed 1 release
VersionStatusFixed in
26.5 Fixed โ€”

References

CWEs

CWE-125

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.