Main Vulnerability Database Vulnerabilities #VU131099

Information disclosure in iPadOS and Apple iOS - CVE-2026-28963

Published: May 12, 2026

Vulnerability identifier: #VU131099

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2026-28963

CWE-ID: CWE-200

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
iPadOS
Apple iOS

Software vendor:
Apple Inc.

Description

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to a privacy issue in Screenshots. An attacker with physical access to device can use Visual Intelligence to access sensitive user data during iPhone Mirroring.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/127110

Information disclosure in iPadOS and Apple iOS - CVE-2026-28963

Description

Remediation

External links

Please verify you're human