CVE-2026-20616

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. Processing a maliciously crafted USD file may lead to unexpected app termination.
References
Link Resource
https://support.apple.com/en-us/126347 Release Notes Vendor Advisory
https://support.apple.com/en-us/126348 Release Notes Vendor Advisory
https://support.apple.com/en-us/126350 Release Notes Vendor Advisory
https://support.apple.com/en-us/126353 Release Notes Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-26-176/
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*

History

02 Apr 2026, 19:21

Type Values Removed Values Added
Summary (en) An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, macOS Tahoe 26.3, macOS Sonoma 14.8.4, visionOS 26.3. Processing a maliciously crafted USD file may lead to unexpected app termination. (en) An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. Processing a maliciously crafted USD file may lead to unexpected app termination.

16 Mar 2026, 14:18

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.5
v2 : unknown
v3 : 8.8
Summary
  • (es) Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema se corrigió en iOS 18.7.5 y iPadOS 18.7.5, macOS Tahoe 26.3, macOS Sonoma 14.8.4, visionOS 26.3. El procesamiento de un archivo USD creado con fines maliciosos puede provocar la terminación inesperada de la aplicación.
References
  • () https://www.zerodayinitiative.com/advisories/ZDI-26-176/ -

17 Feb 2026, 13:13

Type Values Removed Values Added
References () https://support.apple.com/en-us/126347 - () https://support.apple.com/en-us/126347 - Release Notes, Vendor Advisory
References () https://support.apple.com/en-us/126348 - () https://support.apple.com/en-us/126348 - Release Notes, Vendor Advisory
References () https://support.apple.com/en-us/126350 - () https://support.apple.com/en-us/126350 - Release Notes, Vendor Advisory
References () https://support.apple.com/en-us/126353 - () https://support.apple.com/en-us/126353 - Release Notes, Vendor Advisory
First Time Apple iphone Os
Apple visionos
Apple ipados
Apple
Apple macos
CPE cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

13 Feb 2026, 21:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 6.5

13 Feb 2026, 20:17

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-787

11 Feb 2026, 23:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-02-11 23:16

Updated : 2026-06-17 10:17


NVD link : CVE-2026-20616

Mitre link : CVE-2026-20616

CVE.ORG link : CVE-2026-20616


JSON object : View

Products Affected

apple

  • ipados
  • visionos
  • macos
  • iphone_os
CWE
CWE-787

Out-of-bounds Write