CVE-2026-20692

4 documents4 sources

Severity

5.3MEDIUM

EPSS

0.0%

top 87.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

4

Apple IOS AND Ipados Apple Macos Apple Ipados +1 more

Timeline

PublishedMar 25

Description

A privacy issue was addressed with improved handling of user preferences. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. "Hide IP Address" and "Block All Remote Content" may not apply to all mail content.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages5 packages

▶CVEListV5apple/macos< 14.8.5+2

▶NVDapple/macos14.0 — 14.8.5+2

▶NVDapple/ipados< 26.4

▶CVEListV5apple/ios_and_ipados< 26.4

▶NVDapple/iphone_os< 26.4

🔴Vulnerability Details

2

GHSA

GHSA-4fmm-qm6h-33wc: A privacy issue was addressed with improved handling of user preferences↗2026-03-25

▶

CVEList

CVE-2026-20692: A privacy issue was addressed with improved handling of user preferences↗2026-03-25

▶

🕵️Threat Intelligence

1

Wiz

CVE-2026-20692 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

CVE-2026-20692 (MEDIUM CVSS 5.3) | A privacy issue was addressed with | cvebase.io