Published Friday, July 03, 2026 at 10:00 AM PT

<strong>APPLE RELEASES iOS 26.5.2 AND iPadOS 26.5.2 WITH MULTIPLE SECURITY FIXES β€” DEPLOY IMMEDIATELY</strong>

BLUF: Apple has released iOS 26.5.2 and iPadOS 26.5.2 addressing 30+ vulnerabilities including WebKit flaws and AI-discovered bugs. All iPhone and iPad users should update immediately. Specific CVE details available at https://support.apple.com/en-us/100100.


DETAILS:

  • Apple patched 30+ vulnerabilities across iOS, iPadOS, macOS, and Safari in this release cycle
  • WebKit vulnerabilities are included; some flagged as weaponizable-grade by security researchers
  • CVE-2026-43725 and CVE-2026-43701 identified as potentially Pwn2Own-grade severity (per Zero Day Initiative analysis)
  • Update includes AI-discovered security flaws, indicating novel vulnerability classes
  • UNCERTAINTY NOTE: Full CVE list and individual severity ratings not yet independently verified; refer to Apple’s official support page for authoritative details

IMPACT:

  • Scope: All iPhone and iPad devices running iOS/iPadOS versions prior to 26.5.2
  • Risk Level: HIGH β€” WebKit vulnerabilities affect all browsing activity; weaponizable flaws suggest active exploitation risk
  • Affected Users: Estimated billions of iOS/iPadOS devices globally
  • Enterprise Impact: BYOD environments, managed device fleets, and app-dependent workflows

RECOMMENDED ACTIONS:

  1. Immediate: Deploy iOS 26.5.2 and iPadOS 26.5.2 to all managed devices within 48 hours
  2. Priority: Update all devices with WebKit-dependent applications (Safari, in-app browsers)
  3. Verification: Cross-reference CVE details at https://support.apple.com/en-us/100100 against your environment
  4. Monitoring: Watch for exploitation indicators; WebKit flaws may be targeted in the wild
  5. Communication: Notify users of mandatory update requirement if applicable to your organization

SOURCES:

  • Apple Security Updates (official)
  • SecurityWeek reporting
  • The Hacker News coverage
  • Zero Day Initiative analysis