AirDrop and Quick Share fixes from Apple and Google
Security Patch Release
Summary
Hide ▲
Show ▼
Apple and Google have started shipping fixes for the disclosed AirDrop and Quick Share flaws, reducing exposure for nearby attacks against widely used sharing features. Apple has patched one AirDrop bug and assigned it a CVE, while the advisory remains unpublished. Google has landed a code fix for the Quick Share for Windows flaw, though its CVE is still pending. Samsung's two Quick Share bugs remain under investigation.
Related Happenings
Google security patch release for CVE-2025-48595
Security Patch Release
H score45
First: 02.06.2026 14:10
Last: 02.06.2026 14:10
Sources 1
About this happening:
Google's **June 2026 Android security patches** address **124 vulnerabilities**, including an **actively exploited zero-day**. The release ships as the **2026-06-01** and **2026-0...
Google security patch release for CVE-2025-48595
Security Patch ReleaseAbout this happening: Google's **June 2026 Android security patches** address **124 vulnerabilities**, including an **actively exploited zero-day**. The release ships as the **2026-06-01** and **2026-0...
Apple out-of-band iOS/iPadOS security updates (CVE-2026-28950)
Security Patch Release
H score28
First: 22.04.2026 23:58
Last: 22.04.2026 23:58
Sources 1
About this happening:
**Apple** released **out-of-band security updates** for **iPhone and iPad** on **April 22, 2026** to fix **CVE-2026-28950**. The patch addresses a **Notification Services** flaw t...
Apple out-of-band iOS/iPadOS security updates (CVE-2026-28950)
Security Patch ReleaseAbout this happening: **Apple** released **out-of-band security updates** for **iPhone and iPad** on **April 22, 2026** to fix **CVE-2026-28950**. The patch addresses a **Notification Services** flaw t...
Latest development: 23.04.2026 11:50
Apple issued **iOS 26.4.2**, **iPadOS 26.4.2**, **iOS 18.7.8**, and **iPadOS 18.7.8** on **2026-04-23** to close **CVE-2026-28950**, which could preserve deleted-message notifications on affected devices.
Google security patch release for CVE-2026-21385
Security Patch Release
H score37
First: 03.03.2026 10:19
Last: 03.03.2026 10:19
Sources 1
About this happening:
Google released **Android** security updates covering **129 vulnerabilities**, including an **actively exploited zero-day** in a **Qualcomm display component**, creating urgent ri...
Google security patch release for CVE-2026-21385
Security Patch ReleaseAbout this happening: Google released **Android** security updates covering **129 vulnerabilities**, including an **actively exploited zero-day** in a **Qualcomm display component**, creating urgent ri...
Apple security patch release for CVE-2026-20700
Security Patch Release
H score39
First: 12.02.2026 03:06
Last: 12.02.2026 03:06
Sources 1
About this happening:
**Apple** released security updates for **CVE-2026-20700**, a **dyld arbitrary code execution** flaw affecting **iOS, iPadOS, macOS, tvOS, watchOS, and visionOS**. The release mat...
Apple security patch release for CVE-2026-20700
Security Patch ReleaseAbout this happening: **Apple** released security updates for **CVE-2026-20700**, a **dyld arbitrary code execution** flaw affecting **iOS, iPadOS, macOS, tvOS, watchOS, and visionOS**. The release mat...
Latest development: 12.02.2026 09:48
Apple released iOS 26.3, iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, watchOS 26.3, visionOS 26.3, and Safari 26.3 with fixes for CVE-2026-20700, while older branches iOS 18.7.5, iPadOS 18.7.5, macOS Sequoia 15.7.4, and macOS Sonoma 14.8.4 also received security updates. The iOS and iPadOS updates resolve nearly 40 vulnerabilities, the macOS Tahoe refresh fixes over 50 security defects, and Safari 26.3 includes fixes for eight security defects.
Google security patch release for CVE-2025-36911
Security Patch Release
H score23
First: 15.01.2026 18:13
Last: 15.01.2026 18:13
Sources 1
About this happening:
Google and accessory manufacturers released **security patches** for **CVE-2025-36911** in **Fast Pair-enabled Bluetooth accessories**, addressing a flaw that could let attackers...
Google security patch release for CVE-2025-36911
Security Patch ReleaseAbout this happening: Google and accessory manufacturers released **security patches** for **CVE-2025-36911** in **Fast Pair-enabled Bluetooth accessories**, addressing a flaw that could let attackers...
Timeline
-
30.06.2026 12:27 2 articles · 4h ago
Apple patches one AirDrop bug and Google lands a Quick Share for Windows fix
Mitigation Patch UpdateApple shipped iOS and macOS 26.5.2 on June 29 and patched one of the three AirDrop bugs, assigning it a CVE while the advisory remained unpublished; Google also landed a code fix for the Quick Share for Windows memory bug and paid a bounty, while Samsung's two Quick Share bugs stayed under investigation.
Show sources
- AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks — thehackernews.com — 30.06.2026 12:27
- AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks — thehackernews.com — 30.06.2026 12:27
-
30.06.2026 12:27 1 articles · 4h ago
Researchers disclose six AirDrop and Quick Share flaws
Initial DisclosureArash Ale Ebrahim and Nils Ole Tippenhauer of the CISPA Helmholtz Center for Information Security disclosed six security flaws in AirDrop and Quick Share, including crashes in sharingd, a Foundation XML property list parser stack overflow, Samsung session-check bypasses, and a potentially exploitable crash in Google's Quick Share for Windows app; the findings affect nearby attackers within wireless range or the same local network.
Show sources
- AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks — thehackernews.com — 30.06.2026 12:27