Apple macOS Macintosh Operating System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Apple macOS.
Recent Apple macOS Security Advisories
| Advisory | Title | Published |
|---|---|---|
| 126795 | macOS Sequoia 15.7.5 - Apple Security Content | March 24, 2026 |
| 126796 | macOS Sonoma 14.8.5 - Apple Security Content | March 24, 2026 |
| 126794 | macOS Tahoe 26.4 - Apple Security Content | March 24, 2026 |
| 126604 | Background Security Improvements for iOS 26.3.1, iPadOS 26.3.1, macOS 26.3.1, and macOS 26.3.2 - Apple Security Content | March 17, 2026 |
| 126348 | macOS Tahoe 26.3 - Apple Security Content | February 11, 2026 |
| 126349 | macOS Sequoia 15.7.4 - Apple Security Content | February 11, 2026 |
| 126350 | macOS Sonoma 14.8.4 - Apple Security Content | February 11, 2026 |
| 125887 | macOS Sequoia 15.7.3 - Apple Security Content | December 12, 2025 |
| 125886 | macOS Tahoe 26.2 - Apple Security Content | December 12, 2025 |
| 125888 | macOS Sonoma 14.8.3 - Apple Security Content | December 12, 2025 |
Known Exploited Apple macOS Vulnerabilities
The following Apple macOS vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.
| Title | Description | Added |
|---|---|---|
| Apple macOS Use-After-Free Vulnerability |
Apple macOS contains a use-after-free vulnerability that could allow for privilege escalation. CVE-2019-8526 Exploit Probability: 0.5% |
April 17, 2023 |
| Apple macOS Out-of-Bounds Write Vulnerability |
macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges. CVE-2022-22675 Exploit Probability: 1.1% |
April 4, 2022 |
| Apple macOS Out-of-Bounds Read Vulnerability |
macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory. CVE-2022-22674 Exploit Probability: 0.2% |
April 4, 2022 |
| Apple macOS Input Validation Error |
A malicious application may be able to bypass Privacy preferences. Apple is aware of a report that this issue may have been actively exploited. CVE-2021-30713 Exploit Probability: 0.1% |
November 3, 2021 |
| Apple macOS Policy Subsystem Gatekeeper Bypass |
A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited. CVE-2021-30657 Exploit Probability: 83.1% |
November 3, 2021 |
The vulnerability CVE-2021-30657: Apple macOS Policy Subsystem Gatekeeper Bypass is in the top 1% of the currently known exploitable vulnerabilities.
Apple macOS EOL Dates
Ensure that you are using a supported version of Apple macOS. Here are some end of life, and end of support dates for Apple macOS.
| Release | EOL Date | Status |
|---|---|---|
| 26 | - |
Active
|
| 15 | - |
Active
|
| 14 | - |
Active
|
| 13 | September 15, 2025 |
EOL
Apple macOS 13 became EOL in 2025. |
| 12 | September 16, 2024 |
EOL
Apple macOS 12 became EOL in 2024. |
| 11 | February 2, 2026 |
EOL
Apple macOS 11 became EOL in 2026. |
| 10.15 | February 2, 2026 |
EOL
Apple macOS 10.15 became EOL in 2026. |
| 10.14 | October 25, 2021 |
EOL
Apple macOS 10.14 became EOL in 2021. |
| 10.13 | December 1, 2020 |
EOL
Apple macOS 10.13 became EOL in 2020. |
| 10.12 | October 1, 2019 |
EOL
Apple macOS 10.12 became EOL in 2019. |
| 10.11 | December 1, 2018 |
EOL
Apple macOS 10.11 became EOL in 2018. |
| 10.9 | December 1, 2016 |
EOL
Apple macOS 10.9 became EOL in 2016. |
| 10.8 | August 13, 2015 |
EOL
Apple macOS 10.8 became EOL in 2015. |
| 10.7 | October 4, 2012 |
EOL
Apple macOS 10.7 became EOL in 2012. |
| 10.6 | July 25, 2011 |
EOL
Apple macOS 10.6 became EOL in 2011. |
| 10.5 | August 13, 2009 |
EOL
Apple macOS 10.5 became EOL in 2009. |
| 10.4 | November 14, 2007 |
EOL
Apple macOS 10.4 became EOL in 2007. |
| 10.3 | April 15, 2005 |
EOL
Apple macOS 10.3 became EOL in 2005. |
| 10.2 | October 3, 2003 |
EOL
Apple macOS 10.2 became EOL in 2003. |
| 10.1 | June 6, 2002 |
EOL
Apple macOS 10.1 became EOL in 2002. |
By the Year
In 2026 there have been 151 vulnerabilities in Apple macOS with an average score of 5.9 out of ten. Last year, in 2025 macOS had 673 security vulnerabilities published. Right now, macOS is on track to have less security vulnerabilities in 2026 than it did last year. Last year, the average CVE base score was greater by 0.69
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 151 | 5.94 |
| 2025 | 673 | 6.62 |
| 2024 | 536 | 6.39 |
| 2023 | 426 | 6.75 |
| 2022 | 381 | 7.10 |
| 2021 | 500 | 7.01 |
| 2020 | 342 | 7.27 |
| 2019 | 305 | 7.65 |
| 2018 | 89 | 7.25 |
It may take a day or so for new macOS vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apple macOS Security Vulnerabilities
Apple Keychain Local Access via Permission Bypass (iOS 18.7.7, macOS 15.7.5)
CVE-2026-28864
3.3 - Low
- March 25, 2026
This issue was addressed with improved permissions checking. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A local attacker may gain access to user's Keychain items.
AuthZ
Apple Safari/OS 26.4: State Mgmt Auth Flaw Allows User Fingerprinting
CVE-2026-20691
4.3 - Medium
- March 25, 2026
An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user.
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Apple OS 26.4 App Enumeration Permissions Issue
CVE-2026-28833
6.2 - Medium
- March 25, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. An app may be able to enumerate a user's installed apps.
macOS Out-of-Bounds Write Allowing File System Modification (Fixed in Sequoia 15.7.5)
CVE-2026-28825
5.5 - Medium
- March 25, 2026
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to modify protected parts of the file system.
Memory Corruption
Apple OS (iOS/macOS) use-after-free CVE-2026-20687 (pre 18.7.7)
CVE-2026-20687
7.1 - High
- March 25, 2026
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Tahoe 26.4, tvOS 26.4, watchOS 26.4. An app may be able to cause unexpected system termination or write kernel memory.
Dangling pointer
Apple OS Log Data Leakage Fix 18.7.7/26.3
CVE-2026-20668
5.5 - Medium
- March 25, 2026
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3, visionOS 26.3. An app may be able to access sensitive user data.
Insertion of Sensitive Information into Log File
macOS sandbox flaw allows network share access f. 15.7.5/14.8.5/26.4
CVE-2026-20701
7.5 - High
- March 25, 2026
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to connect to a network share without user consent.
Protection Mechanism Failure
Apple iOS Kernel Memory Disclosure via Logging Redaction Flaw (before 18.7.7)
CVE-2026-28868
5.5 - Medium
- March 25, 2026
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. An app may be able to disclose kernel memory.
Insertion of Sensitive Information into Log File
macOS Symlink Exploit Lets App Read Sensitive Data: Fixed 15.7.5/14.8.5/26.4
CVE-2026-20633
5.5 - Medium
- March 25, 2026
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access user-sensitive data.
insecure temporary file
macOS perms flaw fixed in 15.7.5/14.8.5/26.4
CVE-2026-28829
5.5 - Medium
- March 25, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to modify protected parts of the file system.
Incorrect Permission Assignment for Critical Resource
Apple Safari & OS 26.4 Crash due to Memory Handling Exploit
CVE-2026-20664
4.3 - Medium
- March 25, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.
Memory Corruption
macOS Sandbox Race Condition Exploit (fixed 15.7.5/14.8.5/26.4)
CVE-2026-28891
8.1 - High
- March 25, 2026
A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to break out of its sandbox.
Race Condition
Apple iOS/iPadOS Stack Overflow Fixed in 18.7.7 & 26.4
CVE-2026-28852
5.5 - Medium
- March 25, 2026
A stack overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to cause a denial-of-service.
Improper Input Validation
macOS Tahoe <=26.3 File Access Flaw (CVE-2026-28844)
CVE-2026-28844
6.5 - Medium
- March 25, 2026
A file access issue was addressed with improved input validation. This issue is fixed in macOS Tahoe 26.4. An attacker may gain access to protected parts of the file system.
macOS Tahoe 26.4 Auth Bypass via State Mgt Fix
CVE-2026-28845
5.5 - Medium
- March 25, 2026
An authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.4. An app may be able to access protected user data.
AuthZ
Apple Safari 26.3: CSP Bypass via State Management Flaw
CVE-2026-20665
6.5 - Medium
- March 25, 2026
This issue was addressed through improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
Protection Mechanism Failure
Apple macOS Permission Bypass (fixed 15.7.5/14.8.5/26.4)
CVE-2026-28828
5.3 - Medium
- March 25, 2026
A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
macOS 26.4 Directory Path Parsing Vulnerability
CVE-2026-20632
5.3 - Medium
- March 25, 2026
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
Apple OS Null Pointer Deref Causing DoS Fixed in v18.7.7 & 26.4
CVE-2026-28886
5.9 - Medium
- March 25, 2026
A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A user in a privileged network position may be able to cause a denial-of-service.
NULL Pointer Dereference
macOS State Mgmt Auth Issue CVE-2026-28824 (Fixed: 15.7.5,14.8.5,26.4)
CVE-2026-28824
5.3 - Medium
- March 25, 2026
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
Apple macOS OOB Read - Fixed in Sequoia 15.7.5 / Sonoma 14.8.5 / Tahoe 26.4
CVE-2026-28832
8.4 - High
- March 25, 2026
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to disclose kernel memory.
Out-of-bounds Read
Apple OS Audio Stream OOB Bounds Check (fixed 18.7.7/15.7.5)
CVE-2026-20690
6.5 - Medium
- March 25, 2026
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. Processing an audio stream in a maliciously crafted media file may terminate the process.
Out-of-bounds Read
Apple OS Auth State Management Flaw (iOS 18.7.7, macOS 15.7.5-26.4)
CVE-2026-28865
7.5 - High
- March 25, 2026
An authentication issue was addressed with improved state management. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An attacker in a privileged network position may be able to intercept network traffic.
AuthZ
macOS Tahoe 26.4 Privacy Data Leak
CVE-2026-28881
5.3 - Medium
- March 25, 2026
A privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data.
AuthZ
Apple macOS Data Access Vulnerability, Fixed in 15.7.5/14.8.5/26.4
CVE-2026-28839
5.3 - Medium
- March 25, 2026
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data.
AuthZ
Apple iOS 18.7.7 - Sensitive Data Leak via App Enumeration Fix
CVE-2026-28878
6.5 - Medium
- March 25, 2026
A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to enumerate a user's installed apps.
Information Disclosure
macOS Tahoe 26.4: Buffer Overflow via Bounds Check Bug
CVE-2026-28842
7.5 - High
- March 25, 2026
The issue was addressed with improved bounds checks. This issue is fixed in macOS Tahoe 26.4. A buffer overflow may result in memory corruption and unexpected app termination.
Heap-based Buffer Overflow
macOS Privacy: Log Redaction Leak (Fixed 15.7.5/14.8.5/26.4)
CVE-2026-28862
5.3 - Medium
- March 25, 2026
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access user-sensitive data.
Authorization
Apple macOS Permissions Leak Fix 15.7.5, 14.8.5, 26.4
CVE-2026-20697
5.3 - Medium
- March 25, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
macOS SMB Mount Use-after-Free, fixed in 15.7.5/14.8.5
CVE-2026-28835
6.5 - Medium
- March 25, 2026
A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. Mounting a maliciously crafted SMB network share may lead to system termination.
Dangling pointer
macOS Tahoe 26.2 Path Handling Bug Enables Root Apps to Delete Protected Files
CVE-2026-28823
4.9 - Medium
- March 25, 2026
A path handling issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.4. An app with root privileges may be able to delete protected system files.
Authorization
Integer overflow in macOS input validation (15.7.5/14.8.5/26.3)heap corruption
CVE-2026-20639
7.5 - High
- March 25, 2026
An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3. Processing a maliciously crafted string may lead to heap corruption.
Integer Overflow or Wraparound
macOS Logging Redaction Fix (before Sequoia 15.7.5)
CVE-2026-28818
5.3 - Medium
- March 25, 2026
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
Apple Safari 26.4: Sandbox Escape via Memory Handling
CVE-2026-28859
4.3 - Medium
- March 25, 2026
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.
Dangling pointer
Apple OS Type Confusion Vulnerability (fixed iOS 26.4, macOS 15.7.5, etc.)
CVE-2026-28822
6.2 - Medium
- March 25, 2026
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An attacker may be able to cause unexpected app termination.
Object Type Confusion
macOS race cond. causes system termination (fixed in 15.7.5, 14.8.5, 26.4)
CVE-2026-28834
5.1 - Medium
- March 25, 2026
A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to cause unexpected system termination.
Race Condition
iOS 26.3 / iPadOS 26.3 / macOS 26.3: perm flaw lets apps access protected data
CVE-2026-28855
7.5 - High
- March 25, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3. An app may be able to access protected user data.
Authorization
Apple WebKit use-after-free before iOS 18.7.7 crash
CVE-2026-28879
6.5 - Medium
- March 25, 2026
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.
Dangling pointer
macOS Sandbox Escape via Permission Issue (fixed in Sequoia 15.7.5)
CVE-2026-28838
5.3 - Medium
- March 25, 2026
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to break out of its sandbox.
Apple OS App Enumeration (CVE-2026-28880) Fixed in iOS 18.7.7 & macOS 15.7.5
CVE-2026-28880
6.5 - Medium
- March 25, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, visionOS 26.4. An app may be able to enumerate a user's installed apps.
Authorization
Apple macOS Sequoia 15.7.4/Tahoe 26.3: Temp File Flaw Enables Screen Capture
CVE-2026-20622
7.5 - High
- March 25, 2026
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sequoia 15.7.4, macOS Tahoe 26.3. An app may be able to capture a user's screen.
Authorization
macOS Sandbox Bypass via Race Condition (fixed prior to 15.7.5)
CVE-2026-28817
8.1 - High
- March 25, 2026
A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. A sandboxed process may be able to circumvent sandbox restrictions.
Race Condition
Apple iOS use-after-free fixed in 18.7.7/26.3
CVE-2026-20637
6.2 - Medium
- March 25, 2026
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An app may be able to cause unexpected system termination.
Dangling pointer
macOS Intel downgrade flaw fixed with codesigning (Sequoia 15.7.5/Sonoma 14.8.5)
CVE-2026-20699
6.2 - Medium
- March 25, 2026
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3, macOS Tahoe 26.4. An app may be able to access user-sensitive data.
Improper Verification of Cryptographic Signature
iOS/macOS Path Validation Flaw Enabling Sensitive Data Access (CVE-2026-28876)
CVE-2026-28876
7.5 - High
- March 25, 2026
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, visionOS 26.4. An app may be able to access sensitive user data.
Authorization
macOS entitlement validation flaw -> privilege escalation (pre-15.7.5/14.8.5/26.4)
CVE-2026-28821
8.4 - High
- March 25, 2026
A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to gain elevated privileges.
Improper Input Validation
macOS Tahoe 26.3 logic flaw: app may read sensitive data
CVE-2026-28837
7.5 - High
- March 25, 2026
A logic issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data.
Authorization
Apple macOS Kernel Memory Layout Disclosure Fixed in 15.7.5/14.8.5/26.4
CVE-2026-20695
6.2 - Medium
- March 25, 2026
An information disclosure issue was addressed with improved memory management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to determine kernel memory layout.
Apple Safari 26.4: State Mgmt Logic Leak Allows Cross-Origin Script Handler
CVE-2026-28861
4.3 - Medium
- March 25, 2026
A logic issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. A malicious website may be able to access script message handlers intended for other origins.
Apple iOS/iPadOS/macOS Symlink RCE Allows Sensitive Data Access (Fixed 26.3+)
CVE-2026-20694
5.5 - Medium
- March 25, 2026
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.4, macOS Sonoma 14.8.5, macOS Tahoe 26.3, macOS Tahoe 26.4. An app may be able to access user-sensitive data.
Symlink following
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Apple macOS or by Apple? Click the Watch button to subscribe.
