Primary

Context

Apple iOS, iPadOS, macOS Sequoia, tvOS, and visionOS Out-of-Bounds Access Vulnerability in Model I/O and Core Text

Vulnerability

A vulnerability allowing out-of-bounds access has been identified in the media processing components of Apple iOS 26.1, iPadOS 26.1, macOS Sequoia 15.7.2, tvOS 26.1, and visionOS 26.1. This vulnerability arises from insufficient input validation when processing certain media files, which can lead to memory corruption or unexpected application termination. The issue is particularly relevant for users of Apple TV 4K (all models) and Apple Vision Pro (all models), as well as various iPhone and iPad models.

Impact

Exploitation of this vulnerability can cause applications to crash or lead to memory corruption, with potential implications for application stability and data integrity.

Remediation

Users can update to iOS 26.1, iPadOS 26.1, macOS Sequoia 15.7.2, tvOS 26.1, or visionOS 26.1 to address this vulnerability.

Added: Nov 4, 2025, 3:16 AM

Updated: Nov 4, 2025, 3:16 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple iOS, iPadOS, macOS Sequoia, tvOS, and visionOS Out-of-Bounds Access Vulnerability in Model I/O and Core Text

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating