Description
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory corruption.
Severity (CVSS)
| Base score | 8.8 |
|---|---|
| Severity | High |
| Version | CVSS 3.1 |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| Provided by | CISA-ADP |
Weaknesses
- — Processing maliciously crafted web content may lead to memory corruption
- CWE-416 — CWE-416 Use After Free
Affected products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Safari | 0 to <26.5.2 |
| Apple | iOS and iPadOS | 0 to <26.5.2 |
| Apple | macOS | 0 to <26.5.2 |
References
Generated from the official CVE List on 30 Jun 2026 07:04 UTC.