Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple iOS, iPadOS, and watchOS Mail Memory Corruption Vulnerability

Vulnerability

Exploited

Patched

A memory corruption vulnerability has been identified in the Mail application on Apple iOS, iPadOS, and watchOS. This vulnerability allows heap corruption when processing maliciously crafted mail messages. It affects multiple versions of iOS and iPadOS, as well as watchOS 6.2.5 and 5.3.7.

Impact

Exploitation of this vulnerability leads to heap corruption, which can be a precursor to arbitrary code execution.

Remediation

Users can update to iOS 13.5, iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5, or watchOS 5.3.7.

Added: May 15, 2026, 10:40 AM

Updated: May 15, 2026, 10:40 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Apple iOS, iPadOS, and watchOS Mail Memory Corruption Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iOS

Apple iPadOS

Apple watchOS

Apple Mail

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating