Apple has issued significant security updates across its devices, addressing 105 vulnerabilities in macOS 26.1 and 56 in iOS 26.1 and iPadOS 26.1. These updates affect core services used in iPhones, Macs, and iPads. Although Apple patched these vulnerabilities, it reported no active exploitation of them. The scale of this release surprises many, especially given the number of fixes related to WebKit, the open-source engine behind Safari and other browsers. Seven of these WebKit flaws could lead to unexpected process crashes when handling malicious web content. Critics highlight ongoing issues with Apple’s vulnerability disclosure approach. The company does not follow the Common Vulnerability Scoring System (CVSS) and provides limited information regarding the severity and impact of each vulnerability. Dustin Childs from Trend Micro’s Zero Day Initiative expressed frustration over the lack of severity ratings, noting that identifying critical and high-severity bugs would help prioritize security efforts. In addition to the iOS and macOS updates, Apple also patched 21 vulnerabilities in Safari 26.1, 43 in visionOS 26.1, 32 in watchOS 26.1, and two defects in Xcode 26.1. This broad range of fixes indicates a proactive stance toward security, especially after a year marked by five actively exploited zero-day vulnerabilities. The Cybersecurity and Infrastructure Security Agency has included eight Apple vulnerabilities in its catalog of known exploited defects this year.