Description
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.
Severity (CVSS)
| Base score | 6.5 |
|---|---|
| Severity | Medium |
| Version | CVSS 3.1 |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
| Provided by | CISA-ADP |
Weaknesses
- — Processing maliciously crafted web content may lead to an unexpected process crash
- CWE-416 — CWE-416 Use After Free
Affected products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Safari | 0 to <26.5.2 |
| Apple | iOS and iPadOS | 0 to <26.5.2 |
| Apple | macOS | 0 to <26.5.2 |
References
Generated from the official CVE List on 30 Jun 2026 07:04 UTC.