Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Apple | Safari | affected |
|
||||||
| Apple | iOS and iPadOS | affected |
|
||||||
| Apple | macOS | affected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Apple | Ios And Ipados | 100% |
|
||||||||
| Apple | Macos | 100% |
|
||||||||
| Apple | Safari | 100% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 30 Jun 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Clipboard Hijack via Improper State Management in Apple Web Browsers and OS |
Tue, 30 Jun 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Malicious Website Clipboard Hijack via Improper State Management | |
| Weaknesses | CWE-200 |
Tue, 30 Jun 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-732 | |
| Metrics |
cvssV3_1
|
Tue, 30 Jun 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Apple
Apple ios And Ipados Apple macos Apple safari |
|
| Vendors & Products |
Apple
Apple ios And Ipados Apple macos Apple safari |
Mon, 29 Jun 2026 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Malicious Website Clipboard Hijack via Improper State Management | |
| Weaknesses | CWE-200 |
Mon, 29 Jun 2026 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | This issue was addressed through improved state management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may be able to silently hijack clipboard data. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published:
Updated: 2026-06-30T13:05:04.680Z
Reserved: 2026-05-01T22:46:21.645Z
Link: CVE-2026-43721
Vulnrichment
Updated: 2026-06-30T13:04:45.853Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-30T17:15:04Z