Apple iOS, iPadOS, macOS Vulnerability Allows Security Bypass

Name: Changeflow
Rating: 4.8 (150 reviews)

CERT-Bund Security Advisories

Published March 17th, 2026

Detected March 18th, 2026

Summary

CERT-Bund has issued a security advisory for a vulnerability in Apple iOS, iPadOS, and macOS that allows security bypass. The advisory details affected versions and provides mitigation information. The vulnerability has a high CVSS base score.

View original document View source feed page

What changed

CERT-Bund has released a security advisory (WID-SEC-2026-0762) detailing a critical vulnerability affecting Apple iOS, iPadOS, and macOS. This vulnerability, with a CVSS base score of 8.1, allows remote attackers to bypass security measures. Affected versions include Apple iOS <26.3.1, Apple iPadOS <26.3.1, Apple macOS <26.3.1, and Apple macOS <26.3.2.

Users and organizations utilizing these Apple operating systems are advised to apply available updates and mitigations as soon as possible to prevent exploitation. While the advisory does not specify a compliance deadline, prompt patching is crucial to maintain system security and prevent potential data breaches or unauthorized access. Failure to update may leave systems vulnerable to attack.

What to do next

Update Apple iOS to version 26.3.1 or later
Update Apple iPadOS to version 26.3.1 or later
Update Apple macOS to version 26.3.2 or later

Source document (simplified)

[WID-SEC-2026-0762] Apple iOS, iPadOS und macOS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen CVSS Base Score 8.1 (hoch) CVSS Temporal Score 7.3 (hoch) Remoteangriff ja Datum 17.03.2026 Stand 18.03.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

MacOS X

Produktbeschreibung

Das Apple iOS (vormals iPhone OS) ist das Betriebssystem für das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.
Das Apple iPadOS ist das Betriebssystem für das von Apple entwickelte iPad.
Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.

Produkte

17.03.2026
- Apple iOS <26.3.1

Apple iPadOS <26.3.1
Apple macOS <26.3.1
Apple macOS <26.3.2

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apple iOS, Apple iPadOS und Apple macOS ausnutzen, um Sicherheitsvorkehrungen zu umgehen. CVE Informationen Versionshistorie Feedback zum Advisory geben