Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple Multiple Products IOMobileFrameBuffer Memory Corruption Vulnerability Allowing Arbitrary Code Execution with Kernel Privileges

Vulnerability

Exploited

Patched

A memory corruption vulnerability has been identified in the IOMobileFrameBuffer component of multiple Apple operating systems, including macOS Big Sur, iOS, iPadOS, and watchOS. This vulnerability may allow an application to execute arbitrary code with kernel privileges. Apple is aware of reports suggesting that this issue may have been actively exploited.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution with kernel privileges, allowing an application to execute code at the highest level of system access.

Remediation

Users can update to macOS Big Sur 11.5.1, iOS 14.7.1, iPadOS 14.7.1, or watchOS 7.6.1 to address this vulnerability.

Added: May 15, 2026, 10:48 AM

Updated: May 15, 2026, 10:48 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

8.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

8.4

urgency

2.9

incentive

0.0

Actively Exploited in the Wild

Apple Multiple Products IOMobileFrameBuffer Memory Corruption Vulnerability Allowing Arbitrary Code Execution with Kernel Privileges

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Big Sur

Apple iOS

Apple iPadOS

Apple watchOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating