[~]mobilehackerforhire$ hire --now
    cd ../exploit-db
    root@mhfh:~#cat /var/db/exploits/CVE-2026-20700.json
    exploits/CVE-2026-20700.md
    CVE-2026-20700iOSRCECritical

    Memory corruption arbitrary code execution

    affected
    < 26.3
    disclosed
    2026-02-11
    discovered
    2025-12-20
    patched
    iOS 26.3
    author
    Apple Security
    platform
    iOS

    ## description

    Memory corruption in the media processing framework allows for arbitrary code execution when processing a maliciously crafted video file.

    ## impact

    Remote code execution. Possible persistence if chained with LPE.

    ## mitigation

    Update to iOS 26.3 or later.

    ## proof of concept

    # No public source PoC available for RCE. 
# Trigger requires malformed atom in MP4 container.

    ## downloads

    trigger_20700.mp4
    Trigger video file
    1.2 MB

    ## references