A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.4 and iPadOS 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to fingerprint the user.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/126792 | Vendor Advisory |
| https://support.apple.com/en-us/126797 | Vendor Advisory |
| https://support.apple.com/en-us/126798 | Vendor Advisory |
| https://support.apple.com/en-us/126799 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
10 May 2026, 14:16
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-284 |
26 Mar 2026, 20:12
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/126792 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/126797 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/126798 - Vendor Advisory | |
| References | () https://support.apple.com/en-us/126799 - Vendor Advisory | |
| First Time |
Apple watchos
Apple tvos Apple iphone Os Apple visionos Apple ipados Apple |
|
| CWE | NVD-CWE-noinfo | |
| CPE | cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* |
|
| Summary |
|
25 Mar 2026, 21:16
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
25 Mar 2026, 01:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-03-25 01:17
Updated : 2026-05-10 14:16
NVD link : CVE-2026-28863
Mitre link : CVE-2026-28863
CVE.ORG link : CVE-2026-28863
JSON object : View
Products Affected
apple
- ipados
- tvos
- watchos
- visionos
- iphone_os
CWE