CVE-2026-28943: Buffer Overflow
Published May 11, 2026
·Updated
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. An app may be able to determine kernel memory layout.
Other sources
Accelerate. An out-of-bounds read was addressed with improved bounds checking.
— Apple
Accounts. A permissions issue was addressed with additional restrictions.
— Apple
Accounts. An authorization issue was addressed with improved state management.
— Apple
APFS. A buffer overflow was addressed with improved bounds checking.
— Apple
App Intents. A logic issue was addressed with improved restrictions.
— Apple
Credit
Dave G., impost0r (ret2plt), David Ige(Beryllium Security), Arni Hardarson, Andreas Jaegersberger & Ro Achterberg(Nosebeard Labs), Alex Radocea, Kun Peeks@@SwayZGl1tZyyy, Aswin Kumar Gokula Kannan, Csaba Fitzl@@theevilbit(Iru), Suresh Sundaram, Jiri Ha, wdszzml, Atuin Automated Vulnerability Discovery Engine, Johnny Franks@@zeroxjf, Google Threat Analysis Group, Mihalis Haatainen, Ari Hawking, Ashish Kunwar, Vaagn Vardanian, Nathaniel Oh@@calysteon, Yiğit Can YILMAZ@@yilmazcanyigit, Robert Tran(STAR Labs SG Pte), popku1337(STAR Labs SG Pte), Billy Jheng Bing Jhong(STAR Labs SG Pte), Pan Zhenpeng@@Peterpan0927(STAR Labs SG Pte), Aswin kumar Gokulakannan, Calif.io in collaboration with Claude, Anthropic Research, beist, Ryan Hileman via Xint Code (xint.io), Tristan Madani@@TristanInSec(Talence Security), Chris Betz, Dhiyanesh Selvaraj@@redroot97, Atul R V, Anton Pakhunov, Ricardo Prado, Ian van der Wurff (ian.nl), Ilya Sc. Jowell A., Morris Richman@@morrisinlife, Andrei Dodu, Peter Malone, Doron Assness, Amy (amys.website), YingQi Shi@@Mas0nShi(DBAppSecurity's WeBin lab), an anonymous researcher, Wang Yu, Brendon Tiszka(Google Project Zero), Zhongcheng Li(IES Red Team), Michael DePlante@@izobashi(TrendAI Zero Day Initiative), Peter Malone(Supernetworks), Dave G.(Supernetworks), Alex Radocea(Supernetworks), Andy Koo@@andykoo(Hexens), Rosyna Keller(Totally Not Malicious Software), Vamshi Paili, Tony Gorez for Reverse Society@@tonygo_, Alvin Aries Tapia, XiguaSec, Ruslan Dautov, Ilya Andr (andrd3v)(Voynich Group), Ilias Morad (A2nkF)(Voynich Group), Duy Trần@@khanhduytran0, @@hugeBlack, Guy Dor, Adriatik Raci, Cantina, DARKNAVY@@DarkNavyOrg(TrendAI Zero Day Initiative), Daniel Rhea(TrendAI Zero Day Initiative), Anonymous(TrendAI Zero Day Initiative), Luka Rački, Mateusz Krzywicki (iVerify.io), wac(TrendAI Zero Day Initiative), Kookhwan Lee(TrendAI Zero Day Initiative), Maher Azzouzi, Vitaly Simonovich, Luke Francis, kwak kiyong / kakaogames, greenbynox, Adel Bouachraoui, CVE-2026-1837, Alan Wang, Christopher W. Fletcher, Hovav Shacham, David Kohlbrenner, Riccardo Paccagnella, Niels Hofmans(TrendAI Zero Day Initiative), Somair Ansar, Robert Tran, Chris Betz(Talence Security), Omar Cerrito, Jorge Welch, Do Young Park, Yuhao Hu, Yuanming Lai, Chenggang Wu, Zhe Wang, Daniel Rhea, Aisle offensive security research team (Joshua Rogers(Calif), Luigino Camastra(Calif), Igor Morgenstern(Calif), (Calif), Guido Vranken)(Calif), Maher Azzouzi(Calif), Ngan Nguyen(Calif), dr3dd, Milad Nasr, Nicholas Carlini with Claude, Anthropic, Khiem Tran, Kenneth Hsu(Palo Alto Networks), Jérôme DJOUDER, Abhay Kailasia@@abhay_kailasia(Safran Mumbai India), Seiji Sakurai@@HeapSmasher, Asaf Cohen, Dan Raviv, Pan ZhenPeng@@Peterpan0927(STAR Labs SG Pte), David Ige - Beryllium Security, Gia Bui@@yabeow(Calif), w0wbox
Affected Software
18 affected componentsFixes available
Apple macOS Sonoma<14.8.7
14.8.7
Apple macOS Sequoia<15.7.7
15.7.7
Apple iOS<18.7.9
18.7.9
Apple iPadOS<18.7.9
18.7.9
Apple iOS<26.5
26.5
Apple iPadOS<26.5
26.5
Apple macOS Tahoe<26.5
26.5
Apple tvOS<26.5
26.5
Apple WatchOS<26.5
26.5
Apple iPadOS<18.7.9
Apple iPadOS>=26.0<26.5
Apple iPhone OS<18.7.9
Apple iPhone OS>=26.0<26.5
Apple macOS>=14.0<14.8.7
Apple macOS>=15.0<15.7.7
Apple macOS>=26.0<26.5
Apple visionOS<26.5
Apple WatchOS<26.5
Event History
May 11, 2026
Data Sourced
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionWeakness
Updated
via Apple·12:00 AM
Affected Software
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
CVE Published
via MITRE·08:07 PM
Data Sourced
via MITRE·08:07 PM
DescriptionWeakness
Data Sourced
via NVD·09:18 PM
DescriptionSeverityWeaknessAffected Software
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2026-28959
- CVE-2026-28956
- CVE-2026-39869
- CVE-2026-28922
- CVE-2026-28936
- CVE-2026-28915
- CVE-2026-43659
- CVE-2026-28923
- CVE-2026-28925
- CVE-2025-43524
- CVE-2026-28977
- CVE-2026-28990
- CVE-2026-28978
- CVE-2026-28992
- CVE-2026-28943
- CVE-2026-28969
- CVE-2026-43654
- CVE-2026-28954
- CVE-2026-28897
- CVE-2026-28952
- CVE-2026-28908
- CVE-2026-28951
- CVE-2026-28972
- CVE-2026-28986
- CVE-2026-28987
- CVE-2026-28929
- CVE-2026-43653
- CVE-2026-43668
- CVE-2026-43666
- CVE-2026-28906
- CVE-2026-28840
- CVE-2026-43656
- CVE-2026-39870
- CVE-2026-28846
- CVE-2026-28993
- CVE-2026-28996
- CVE-2026-28919
- CVE-2026-28924
- CVE-2026-39871
- CVE-2026-28819
- CVE-2026-28994
- CVE-2026-28920
- CVE-2026-28878
- CVE-2026-28940
- CVE-2026-28941
- CVE-2026-28848
- CVE-2026-28974
- CVE-2026-28877
- CVE-2026-28995
- CVE-2026-28872
- CVE-2026-28894
- CVE-2026-28870
- CVE-2026-28983
- CVE-2026-28882
- CVE-2026-28873
- CVE-2026-28957
- CVE-2026-28907
- CVE-2026-43660
- CVE-2026-28847
- CVE-2026-28904
- CVE-2026-28903
- CVE-2026-28955
- CVE-2026-28953
- CVE-2026-28962
- CVE-2026-28917
- CVE-2026-28991
- CVE-2026-28988
- CVE-2026-1837
- CVE-2026-28964
- CVE-2026-28918
- CVE-2026-43661
- CVE-2026-43655
- CVE-2026-28985
- CVE-2026-28963
- CVE-2026-43658
- CVE-2026-28905
- CVE-2026-28902
- CVE-2026-28901
- CVE-2026-28913
- CVE-2026-28883
- CVE-2026-28958
- CVE-2026-28947
- CVE-2026-28942
- CVE-2026-28971
- CVE-2026-28944
- CVE-2026-28965
- CVE-2026-28961
- CVE-2026-43652
- CVE-2026-28930
- CVE-2026-28976
- CVE-2026-28946
- CVE-2026-28914
Frequently Asked Questions
1
What is the severity of CVE-2026-28943?
CVE-2026-28943 is classified as a moderate severity vulnerability due to its potential to expose kernel memory layout.
2
How do I fix CVE-2026-28943?
To fix CVE-2026-28943, update your Apple device to the latest versions such as iOS 18.7.9 or macOS 26.5.
3
What software is affected by CVE-2026-28943?
CVE-2026-28943 affects multiple Apple products including iOS, iPadOS, macOS Tahoe, macOS Sequoia, tvOS, and watchOS.
4
When was CVE-2026-28943 disclosed?
CVE-2026-28943 was disclosed alongside the security updates released by Apple.
5
What is the nature of the issue in CVE-2026-28943?
CVE-2026-28943 involves a logging issue that could potentially allow apps to determine kernel memory layout.