macOS 26.4 Directory Path Parsing Vulnerability
CVE-2026-20632 Published on March 25, 2026

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data.

NVD

Products Associated with CVE-2026-20632

Want to know whenever a new CVE is published for Apple macOS? stack.watch will email you.

Apple macOS

Affected Versions

Apple macOS:

Before 26.4 is affected.

macOS 26.4 Directory Path Parsing VulnerabilityCVE-2026-20632 Published on March 25, 2026

Products Associated with CVE-2026-20632

Affected Versions

macOS 26.4 Directory Path Parsing Vulnerability
CVE-2026-20632 Published on March 25, 2026