Description
An authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.4. An app may be able to access protected user data.
Published: 2026-03-25
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Access to Protected User Data
Action: Apply Patch
AI Analysis

Impact

An authorization flaw in macOS allows an application to obtain access to protected user data that it should not normally be able to read. The vulnerability stems from improper state management and is identified as an improper authorization issue (CWE-285). The impact is that a malicious or compromised application could read data that a user expects to remain protected, potentially exposing personal information or sensitive information stored on the device.

Affected Systems

Apple macOS systems are affected by this issue, with the fix introduced in macOS Tahoe version 26.4. All earlier releases lacking this update are vulnerable, while systems running 26.4 or later are considered patched.

Risk and Exploitability

The CVSS score of 5.5 indicates a medium level of severity. EPSS shows less than 1 percent likelihood of exploitation, and the vulnerability is not listed in the CISA KEV catalog. The attack vector is not explicitly documented, but given the nature of authorization flaws, the most likely scenario involves a local malicious application leveraging the flaw to read protected data; this inference is drawn from the description rather than direct evidence in the provided data.

Generated by OpenCVE AI on March 25, 2026 at 20:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update macOS to version 26.4 or later to obtain the authorization fix.
  • Verify that the update includes the improved state management and that no application can access protected user data without proper authorization.
  • Monitor Apple support announcements or security advisories for any further remediation steps or additional patches.

Generated by OpenCVE AI on March 25, 2026 at 20:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://support.apple.com/en-us/126794 cve-icon cve-icon
History

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Title macOS Authorization Issue Allowing App to Access Protected User Data

Wed, 25 Mar 2026 19:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 25 Mar 2026 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-285
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 25 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Wed, 25 Mar 2026 01:00:00 +0000

Type Values Removed Values Added
Description An authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.4. An app may be able to access protected user data.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:24:47.343Z

Reserved: 2026-03-03T16:36:03.970Z

Link: CVE-2026-28845

cve-icon Vulnrichment

Updated: 2026-03-25T17:45:07.796Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T01:17:09.273

Modified: 2026-03-25T20:30:36.507

Link: CVE-2026-28845

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T21:16:17Z

Weaknesses