CVE-2026-43700 | Apple Safari/iOS/iPadOS/macOS up to 26.5.1 Web cross-domain policy
A vulnerability, which was classified as problematic, was found in Apple Safari, iOS, iPadOS and macOS up to 26.5.1. This affects an unknown function of the component Web Handler. The manipulation results in permissive cross-domain policy with untrusted domains.
This vulnerability is reported as CVE-2026-43700. The attack can be launched remotely. No exploit exists.
You should upgrade the affected component.VulDB Recent EntriesRead More