CVE-2026-20700 — Apple Multiple Buffer Overflow Vulnerability

Description

Apple iOS, macOS, tvOS, watchOS, and visionOS contain an improper restriction of operations within the bounds of a memory buffer vulnerability that could allow an attacker with memory write the capability to execute arbitrary code.

How to fix CVE-2026-20700

No package mapping is available — consult the references below for vendor-specific guidance.

Is CVE-2026-20700 being exploited?

Yes — CVE-2026-20700 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (0)

No package mapping in OSV.