CVE Catalog

CVE-2026-43722

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

4th percentile — higher than 4% of all known CVEs

Summary

A vulnerability in Apple iOS, iPadOS, and macOS Tahoe allows an app to leak sensitive kernel state. The issue was fixed by improving input sanitization.

Risk Assessment

The risk involves potential disclosure of sensitive kernel data by a malicious app, which could lead to privilege escalation or further system attacks.

Recommendation

Immediately update systems to iOS 26.5.2, iPadOS 26.5.2, or macOS Tahoe 26.5.2.

Original NVD description (English source)

The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to leak sensitive kernel state.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS