Description
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Severity (CVSS)
| Base score | 6.5 |
|---|---|
| Severity | Medium |
| Version | CVSS 3.1 |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
| Provided by | CISA-ADP |
Weaknesses
- — Processing maliciously crafted web content may lead to an unexpected Safari crash
- CWE-125 — CWE-125 Out-of-bounds Read
- CWE-787 — CWE-787 Out-of-bounds Write
Affected products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Safari | 0 to <26.5.2 |
| Apple | iOS and iPadOS | 0 to <26.5.2 |
| Apple | macOS | 0 to <26.5.2 |
References
Generated from the official CVE List on 30 Jun 2026 07:04 UTC.