Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple Core Telephony Sandbox Bypass Vulnerability

Vulnerability

Exploited

Patched

A deserialization vulnerability in the Core Telephony framework of Apple iOS, macOS, and watchOS allows a sandboxed process to bypass sandbox restrictions. This issue was addressed with improved validation and is fixed in multiple Apple software updates. At the time of the release, Apple was aware of reports suggesting that this vulnerability may have been actively exploited.

Impact

Exploitation of this vulnerability could lead to unauthorized access to resources or capabilities that are normally restricted by the sandbox, potentially allowing a malicious process to perform actions or access data that it should not be able to.

Remediation

Users can apply the Security Update 2021-005 Catalina, or update to iOS 12.5.5, iOS 14.8, iPadOS 14.8, macOS Big Sur 11.6, or watchOS 7.6.2.

Added: May 15, 2026, 10:55 AM

Updated: May 15, 2026, 10:55 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Apple Core Telephony Sandbox Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple macOS

Apple iOS

Apple watchOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating