Description
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sequoia 15.7.4, macOS Tahoe 26.3. An app may be able to capture a user's screen.
Published: 2026-03-25
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Screen Capture
Action: Immediate Patch
AI Analysis

Impact

A privacy flaw involving inadequate handling of temporary files may allow an application to capture the user’s screen. The weakness is classified as an access control problem, meaning an application can obtain data it should not normally be able to see. The consequences include disclosure of sensitive visual information displayed on the screen and potential compromise of user privacy.

Affected Systems

Apple macOS is affected. The issue is fixed in macOS Sequoia 15.7.4 and macOS Tahoe 26.3, so earlier releases of these major versions are at risk. No other vendors or products are listed.

Risk and Exploitability

The vulnerability has a CVSS score of 7.5, indicating high severity, and an EPSS score of less than 1%, suggesting a low likelihood of active exploitation at present. It does not appear in the CISA KEV catalog. Because control over temporary files typically requires local access, the likely attack vector is a local attacker who can run or manipulate applications on the compromised machine. No additional exploit conditions are described in the available data.

Generated by OpenCVE AI on March 26, 2026 at 13:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install macOS Sequoia 15.7.4 or macOS Tahoe 26.3 to remove the vulnerability.

Generated by OpenCVE AI on March 26, 2026 at 13:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 26 Mar 2026 14:00:00 +0000

Type Values Removed Values Added
Title Inadequate Temporary File Handling May Allow Screen Capture on macOS

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Title Potential Screen Capture via Improper Temporary File Handling
Weaknesses CWE-200

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Title Potential Screen Capture via Improper Temporary File Handling
Weaknesses CWE-200
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 25 Mar 2026 21:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-284
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 25 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Wed, 25 Mar 2026 01:00:00 +0000

Type Values Removed Values Added
Description A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sequoia 15.7.4, macOS Tahoe 26.3. An app may be able to capture a user's screen.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:17:44.860Z

Reserved: 2025-11-11T14:43:07.859Z

Link: CVE-2026-20622

cve-icon Vulnrichment

Updated: 2026-03-25T20:19:54.925Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T01:17:03.873

Modified: 2026-03-25T21:53:53.983

Link: CVE-2026-20622

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-26T13:55:05Z

Weaknesses