Zero Day MonitorZDM

← Back to list

—

CVE-2026-43721EXPLOITEDPATCHED

apple · safari

CVE-2026-43721: This issue was addressed through improved state management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS

Description

A vulnerability was found in Apple Safari, iOS, iPadOS and macOS up to 26.5.1. It has been rated as critical. This affects an unknown function of the component Website Handler. Performing a manipulation results in Remote Code Execution. Remote exploitation of the attack is possible.

Affected Products

Vendor	Product	Versions
apple	safari	0, 0, 0

References

Related News (1 articles)

Tier C

VulDB5h ago

CVE-2026-43721 | Apple Safari/iOS/iPadOS/macOS up to 26.5.1 Website Remote Code Execution

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

26.5.2

PublishedJun 29, 2026

Last enriched4h agov2

Trending Score49

Source articles1

Independent1

Info Completeness7/14

Missing: cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-43731EXP

CVE-2026-43731: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43715EXP

CVE-2026-43715: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43709EXP

CVE-2026-43709: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43727EXP

CVE-2026-43727: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43718EXP

CVE-2026-43718: A stack overflow was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPad

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 29, 2026

Actively Exploited

Jun 29, 2026

Patch Available

Jun 29, 2026

Discovered by ZDM

Jun 29, 2026

Updated: description, severity, activelyExploited

Jun 29, 2026

Version History

v2

Last enriched 4h ago

v2Tier C4h ago

Updated severity to CRITICAL, changed exploit availability to false, and provided a more detailed description of the vulnerability.

descriptionseverityactivelyExploited

via VulDB

v18h ago

Initial creation