CVE-2026-43704 PUBLISHED

Assigner: apple
Reserved: 01.05.2026 Published: 29.06.2026 Updated: 29.06.2026

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious web extension may be able to cause an unexpected process crash.

Product Status

Vendor Apple
Product Safari
Versions
  • affected from 0 to 26.5.2 (excl.)
Vendor Apple
Product iOS and iPadOS
Versions
  • affected from 0 to 26.5.2 (excl.)
Vendor Apple
Product macOS
Versions
  • affected from 0 to 26.5.2 (excl.)

References

Problem Types

  • A malicious web extension may be able to cause an unexpected process crash