{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20692", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2025-11-11T14:43:07.876Z", "datePublished": "2026-03-25T00:31:35.596Z", "dateUpdated": "2026-03-25T00:31:35.596Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "\"Hide IP Address\" and \"Block All Remote Content\" may not apply to all mail content"}]}], "affected": [{"vendor": "Apple", "product": "iOS and iPadOS", "versions": [{"version": "0", "status": "affected", "lessThan": "26.4", "versionType": "custom"}]}, {"vendor": "Apple", "product": "macOS", "versions": [{"version": "0", "status": "affected", "lessThan": "14.8.5", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "15.7.5", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "26.4", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "A privacy issue was addressed with improved handling of user preferences. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. \"Hide IP Address\" and \"Block All Remote Content\" may not apply to all mail content."}], "references": [{"url": "https://support.apple.com/en-us/126792"}, {"url": "https://support.apple.com/en-us/126794"}, {"url": "https://support.apple.com/en-us/126795"}, {"url": "https://support.apple.com/en-us/126796"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-03-25T00:31:35.596Z"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A privacy issue was addressed with improved handling of user preferences. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. \"Hide IP Address\" and \"Block All Remote Content\" may not apply to all mail content."}], "id": "CVE-2026-20692", "lastModified": "2026-03-25T15:41:58.280", "metrics": {}, "published": "2026-03-25T01:17:06.017", "references": [{"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126792"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126794"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126795"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126796"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Awaiting Analysis"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,26.4)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "iOS and iPadOS", "source": "cna", "vendor": "Apple"}, "product": "ios_and_ipados", "vendor": "apple"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,14.8.5)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,15.7.5)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,26.4)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "macOS", "source": "cna", "vendor": "Apple"}, "product": "macos", "vendor": "apple"}], "analysis": {"en": {"generated_at": "2026-03-25T02:29:26.781842+00:00", "value": {"mitigation_remediation": ["Update the affected devices to iOS\u202f26.4, iPadOS\u202f26.4, macOS Sequoia\u202f15.7.5, macOS Sonoma\u202f14.8.5, or macOS Tahoe\u202f26.4.", "Verify that the \u201cHide IP Address\u201d and \u201cBlock All Remote Content\u201d settings are enabled in Mail preferences after the update.", "Avoid opening emails from untrusted senders until the update is applied.", "Contact Apple support if the issue persists after updating."], "summary": {"action": "Immediate Patch", "impact": "Privacy Leak \u2013 IP Address Exposure"}, "threat_synthesis": {"affected_systems": "Affected systems include Apple iOS\u202f26.4 and iPadOS\u202f26.4, macOS Sequoia\u202f15.7.5, macOS Sonoma\u202f14.8.5, and macOS Tahoe\u202f26.4. The issue was addressed in these releases; earlier versions remain vulnerable. No other platforms or products were identified by the CNA.", "description_and_impact": "The vulnerability affects the handling of privacy preferences in Apple\u2019s mail apps on iOS, iPadOS, and macOS. The app can fail to enforce the \u201cHide IP Address\u201d and \u201cBlock All Remote Content\u201d settings for some email items, leading to the exposure of a user\u2019s IP address and the loading of remote resources. Because the information is tied to user privacy, the impact is a privacy breach that could reveal a user\u2019s location and browsing context.", "risk_and_exploitability": "The issue is classified as a privacy weakness. No CVSS or EPSS score is available, and it does not appear in the CISA KEV catalogue. An attacker could exploit the flaw by sending a malicious email that contains remote content; the mail app may still load that content and expose the user\u2019s IP address even when the user has enabled the privacy preferences. Therefore the likelihood depends on whether the user opens such messages, and the consequence is a privacy breach rather than a code execution or denial of service."}}}}, "created": "2026-03-25T11:37:06.450512+00:00", "title": "Email Client Preference Leakage: IP Address Exposure Despite Privacy Settings", "updated": "2026-03-25T20:56:51.113934+00:00", "vendors": ["apple", "apple$PRODUCT$ios_and_ipados", "apple$PRODUCT$macos"], "weaknesses": ["CWE-200"]}