Zero Day MonitorZDM

← Back to list

8.6

CVE-2026-49269

apple · m1 gpu

CVE-2026-49269: Apple M1 GPUs retain register file data between compute shader dispatches from different processes. A sandboxed Metal at

Description

Apple M1 GPUs retain register file data between compute shader dispatches from different processes. A sandboxed Metal attacker app can run a GPU reader shader that reads stale register values left by a separate sandboxed victim app. In the proof of concept, GPUVictim.app generates a fresh random 128-bit secret using SecRandomCopyBytes and loads it into GPU registers. GPUAttacker.app, a separate sandboxed app, recovers the exact secret from stale GPU register state. NOTE: The vendor stated that this behavior affects only legacy hardware and has already been addressed at the hardware level in current-generation Apple Silicon.

Affected Products

Vendor	Product	Versions
apple	m1 gpu	n/a

References

https://gist.github.com/scndls/9cbe31f2b0b1578eaeb311e601335355

Related News (1 articles)

Tier C

VulDB5d ago

CVE-2026-49269 | Apple M1 sandbox

→ No new info (linked only)

CVSS 3.18.6 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CISA KEV❌ No

Actively exploited❌ No

CWECWE-200

PublishedJun 24, 2026

Last enriched4d agov2

Trending Score26

Source articles1

Independent1

Info Completeness7/14

Missing: epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-43715EXP

CVE-2026-43715: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43731EXP

CVE-2026-43731: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43699EXP

CVE-2026-43699: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43709EXP

CVE-2026-43709: A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 a

CRITICALCVE-2026-43718EXP

CVE-2026-43718: A stack overflow was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPad

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 24, 2026

Discovered by ZDM

Jun 24, 2026

Updated: severity

Jun 24, 2026

Version History

v2

Last enriched 4d ago

v2Tier C5d ago

Updated severity from HIGH to CRITICAL and confirmed no exploit is available.

severity

via VulDB

v15d ago

Initial creation