Description
An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3. Processing a maliciously crafted string may lead to heap corruption.
Published: 2026-03-25
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Heap Corruption
Action: Apply Patch
AI Analysis

Impact

An integer overflow was discovered in macOS input validation, allowing a specially crafted string to overwrite heap memory. The flaw arises from inadequate bounds checking when processing user‑supplied text, which is a classic integer overflow weakness (CWE‑190). If successfully triggered, the overflow causes heap corruption that could potentially lead to arbitrary code execution or system instability on the affected machine.

Affected Systems

Apple macOS is the only vendor listed. Versions prior to macOS Sequoia 15.7.5, Sonoma 14.8.5, and Tahoe 26.3 contain the vulnerability. These releases incorporate the integer overflow fix; thus, any macOS installation running an earlier release of the listed lines is at risk.

Risk and Exploitability

The CVSS base score of 7.5 indicates high severity, but the EPSS score of less than 1% suggests a low probability of exploitation in the near term, and the vulnerability is not present in the CISA KEV catalog. Based on the description, the likely attack vector is local or privileged exposure to a maliciously crafted string; therefore, an attacker would need to supply such input on a vulnerable system. No publicly documented exploits exist, although the heap corruption could be leveraged for code execution if an attacker can deliver the erroneous data.

Generated by OpenCVE AI on March 26, 2026 at 14:29 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade macOS to the latest release that includes the fix, such as Sequoia 15.7.5, Sonoma 14.8.5, or Tahoe 26.3.
  • If an update is not immediately available, avoid processing untrusted input sources until a patch is applied.

Generated by OpenCVE AI on March 26, 2026 at 14:29 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 27 Mar 2026 10:00:00 +0000

Type Values Removed Values Added
Title Heap Corruption via Integer Overflow in macOS Input Processing

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Title Heap Corruption via Integer Overflow in macOS
Weaknesses CWE-122

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Title Heap Corruption via Integer Overflow in macOS
Weaknesses CWE-122

Wed, 25 Mar 2026 21:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 25 Mar 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-190
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 25 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Wed, 25 Mar 2026 01:00:00 +0000

Type Values Removed Values Added
Description An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.3. Processing a maliciously crafted string may lead to heap corruption.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:20:46.356Z

Reserved: 2025-11-11T14:43:07.861Z

Link: CVE-2026-20639

cve-icon Vulnrichment

Updated: 2026-03-25T19:45:59.400Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T01:17:04.443

Modified: 2026-03-25T21:32:57.330

Link: CVE-2026-20639

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-27T09:50:35Z

Weaknesses