CVE-2026-20650
published 2026-02-11CVE-2026-20650: A denial-of-service issue was addressed with improved validation. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A denial-of-service issue was addressed with improved validation. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker in a privileged network position may be able to perform denial-of-service attack using crafted Bluetooth packets.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_26.3_and_ipados | — | — |
| apple | ios_and_ipados | < 26.3 | 26.3 |
| apple | ipados | < 26.3 | 26.3 |
| apple | iphone_os | < 26.3 | 26.3 |
| apple | macos | < 26.3 | 26.3 |
| apple | macos_tahoe | — | — |
| apple | tvos | < 26.3 | 26.3 |
| apple | tvos | — | — |
| apple | visionos | < 26.3 | 26.3 |
| apple | visionos | — | — |
| apple | watchos | < 26.3 | 26.3 |
| apple | watchos | — | — |