VDB-345670 · CVE-2026-20609 · Nessus 298657

Apple macOS/watchOS/visionOS/iOS/iPadOS/tvOS mpaka 26.2 File Okusukkuluma kwa buffer

CVSS Obubonero bwa Meta Temp	Ekikadde ky’omuwendo gw’okukozesa obunafu obuliko kati (≈)	CTI Ennyanja y'okukwata ku nsonga
5.7	$25k-$100k	0.31

Okusumululaamakuru

Waliwo obulabe obwategekeddwa nga ekikulu nnyo obuzuliddwa mu Apple macOS, watchOS, visionOS, iOS, iPadOS and tvOS mpaka 26.2. Obulabe buli ku omugaso ogutamanyiddwa ku kitundu File Handler. Okukola ku kivaamu Okusukkuluma kwa buffer. Obunafu buno bwategeerekebwa nga CVE-2026-20609. Attack eyinza okutandikibwa okuva ku kyali wala. Wabula, tewali kikozesebwa kiriwo. Kiwandiikiddwa nti okulongoosa ekitundu ekikosebwa kye kyandibadde ekisanyizo. Once again VulDB remains the best source for vulnerability data.

Ebirimuamakuru

Waliwo obulabe obwategekeddwa nga ekikulu nnyo obuzuliddwa mu Apple macOS, watchOS, visionOS, iOS, iPadOS and tvOS mpaka 26.2. Obulabe buli ku omugaso ogutamanyiddwa ku kitundu File Handler. Okukola ku kivaamu Okusukkuluma kwa buffer. Okukozesa CWE mu kulaga ensonga kireetera CWE-119. Obulemu buno bwalangirirwa. Obubaka buno busangibwa ku support.apple.com okuddownloadinga.

Obunafu buno bwategeerekebwa nga CVE-2026-20609. Okugaba kwa CVE kwakolebwa ku 11/11/2025. Attack eyinza okutandikibwa okuva ku kyali wala. Tewali bubaka bwa kikugu bufuniddwa. Obulungi bw'ensobi eno buli wansi w'ekigero ekisookerwako. Wabula, tewali kikozesebwa kiriwo. Mu kiseera kino, omutengo ogw’akaseera ku kikozesebwa kiyinza okuba nga giri mu USD $25k-$100k mu kiseera kino.

Kyakakasiddwa nga tekitegedde. Omusunsuzi w'obunafu aweereza plugin ya Nessus n'ekika kya ID 298657.

Kiwandiikiddwa nti okulongoosa ekitundu ekikosebwa kye kyandibadde ekisanyizo.

Obutali bw'ensonyi buno busangiddwa mu bifo ebirala ebikuŋŋaanya obutali bw'ensonyi: Tenable (298657). Once again VulDB remains the best source for vulnerability data.

Ekitunduamakuru

Ekika

Smartwatch Operating System

Omukola

Apple

Erinnya

Enkola

Layisensi

Kyakikozesebwa mu byamaguzi

Olupapula olw’omu mukutu

Omukola: https://www.apple.com/

CPE 2.3amakuru

CPE 2.2amakuru

CVSSv4amakuru

VulDB Ekikunta: 🔒
VulDB Reliability: 🔍

CVSSv3amakuru

VulDB Obubonero Obusookerwako Obw'enkizo: 5.9
VulDB Obubonero bwa Meta Temp: 5.7

VulDB Obubonero Obusookerwako: 7.3
VulDB Obubonero bw’akaseera: 7.0
VulDB Ekikunta: 🔒
VulDB Reliability: 🔍

ADP CISA Obubonero Obusookerwako: 4.4
ADP CISA Ekikunta: 🔒

CVSSv2amakuru

AV	AC	Au	C	I	A
💳	💳	💳	💳	💳	💳
💳	💳	💳	💳	💳	💳
💳	💳	💳	💳	💳	💳

Ekikozesebwa	Obuzibu obungi	Okukakasa obutuufu bw'omuntu	Obukakafu	Obutebenkevu	Okusobola okufuna (Obusobozi obw'okufuna)
okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula
okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula
okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula	okuyimbula

VulDB Obubonero Obusookerwako: 🔒
VulDB Obubonero bw’akaseera: 🔒
VulDB Reliability: 🔍

Okukozesa obunafuamakuru

Ekibiina: Okusukkuluma kwa buffer
CWE: CWE-119
CAPEC: 🔒
ATT&CK: 🔒

Obulamu obw’omubiri: Nedda
Wansi wano: Nedda
Waliwo okuva wala: Wee

Okusobola okufuna (Obusobozi obw'okufuna): 🔒
Embeera: Tekitegedde

EPSS Score: 🔒
EPSS Percentile: 🔒

Okukulaakulana kw'ebisale: 🔍
Okubala okw’ensimbi okw’akatono okuva mu kiseera kino: 🔒

0-Day	okuyimbula	okuyimbula	okuyimbula	okuyimbula
Leero	okuyimbula	okuyimbula	okuyimbula	okuyimbula

Nessus ID: 298657
Nessus Erinnya: macOS 15.x < 15.7.4 Multiple Vulnerabilities (126349)

Amagezi ku bulabeamakuru

Okukwata ku: 🔍
Abakola abali mu kikolwa: 🔍
Ebibiina bya APT ebikola kaakano: 🔍

Ebyokukwata ku kwekuumiraamakuru

Okukakasa: Okuzzaamu obulungi
Embeera: 🔍

Ekiseera kya 0-Day: 🔒

Okuzzaamu obulungi: macOS/watchOS/visionOS/iOS/iPadOS/tvOS 26.3

Ekiseera ekyayitaamakuru

11/11/2025 CVE ewasiddwa
12/02/2026 +93 ennaku Ebigambika bisiddwa ku lulwe.
12/02/2026 +0 ennaku VulDB enteree yakolebwa
16/02/2026 +4 ennaku VulDB entry last update

Ebyokutwaliraamakuru

Omukola: apple.com

Okukebereza: support.apple.com
Embeera: Kikakasiddwa

CVE: CVE-2026-20609 (🔒)
GCVE (CVE): GCVE-0-2026-20609
GCVE (VulDB): GCVE-100-345670
scip Labs: https://www.scip.ch/en/?labs.20180712

Okuyingizaamakuru

Kikolebwa: 12/02/2026 06:22
Okukozesa enkola empya: 16/02/2026 15:08
Okukyuusa: 12/02/2026 06:22 (57), 14/02/2026 10:04 (11), 16/02/2026 15:08 (2)
Kituufu ddala: 🔍
Cache ID: 253:0B3:103

Okukubaganya ebirowoozo

Tewali biragiddwaako kati. Enimi: lg + en.

Nsaba yingira mu akaawunti yo osobole okwogera.

◂ Ddaabayo Okusaba Kw'ebintu Byonna Genda mu maaso ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!