Description
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.1. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.
Published: 2026-04-02
Score: 8.2 High
EPSS: < 1% Very Low
KEV: No
Impact: Local privilege escalation via sandbox escape
Action: Immediate Patch
AI Analysis

Impact

A permissions defect allows an application to run code outside its sandbox or with elevated privileges. This flaw can be exploited to acquire higher-level access than intended, potentially compromising data confidentiality and system integrity. The weakness is categorized as an improper restriction of operations.

Affected Systems

Apple macOS systems are affected. The issue is resolved in macOS Sequoia 15.1; earlier releases may remain vulnerable.

Risk and Exploitability

The CVSS score of 8.2 signals a high severity, while an EPSS value below 1% indicates a low probability of a widespread public exploit. The vulnerability is not listed in the CISA KEV catalog, further suggesting limited active exploitation. Attackers would likely need local access to install or execute a malicious app or take advantage of a sandboxed application, making the threat scenario more aligned with local or insider attacks rather than remote exposure.

Generated by OpenCVE AI on April 3, 2026 at 21:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade macOS to Sequoia 15.1 or later via the System Settings Update feature.
  • Verify the installation of the latest security update and restart the system to apply changes.

Generated by OpenCVE AI on April 3, 2026 at 21:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://support.apple.com/en-us/121564 cve-icon cve-icon
History

Tue, 07 Apr 2026 08:00:00 +0000

Type Values Removed Values Added
Title Privilege Escalation Allowing Sandbox Escape and Elevated Code Execution

Fri, 03 Apr 2026 19:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
Title Privilege Escalation Allowing Sandbox Escape and Elevated Code Execution
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Fri, 03 Apr 2026 05:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.1. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.
Weaknesses CWE-269
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-03T03:55:50.667Z

Reserved: 2024-08-20T21:45:40.785Z

Link: CVE-2024-44250

cve-icon Vulnrichment

Updated: 2026-04-02T18:46:51.187Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-02T19:18:28.527

Modified: 2026-04-03T17:54:38.027

Link: CVE-2024-44250

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-07T07:55:36Z

Weaknesses