Description
This issue was addressed with improved permissions checking. This issue is fixed in macOS Tahoe 26.4. A malicious app may be able to access arbitrary files.
Published: 2026-05-11
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A permissions checking flaw in macOS allows a malicious application to read any file on the system without user consent. The vulnerability is a lack of proper authorization enforcement for protected resources, represented by CWE‑284, which can lead to confidential data disclosure.

Affected Systems

All versions of Apple macOS released before macOS Tahoe 26.4 contain this flaw. The fix is included in macOS 26.4, so any older releases are vulnerable and should be upgraded.

Risk and Exploitability

The EPSS score is below 1 % but non‑zero, indicating a very low yet possible exploitation probability. The CVSS score of 3.3 marks the vulnerability as low severity. The flaw does not appear in the CISA KEV catalog. Exploitation is likely possible only from a local or user‑initiated application; no remote trigger is documented. A successful exploitation would allow the attacker to read arbitrary files on the target system.

Generated by OpenCVE AI on May 13, 2026 at 00:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply macOS 26.4 or later to incorporate the fixed permission checks.
  • Restrict the installation of unknown third‑party apps by enforcing Gatekeeper and ensuring user confirmation before execution.
  • Enable System Integrity Protection and review file‑system audit logs for anomalous read attempts to detect potential misuse.

Generated by OpenCVE AI on May 13, 2026 at 00:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://support.apple.com/en-us/126794 cve-icon cve-icon
History

Tue, 12 May 2026 23:45:00 +0000

Type Values Removed Values Added
Title Arbitrary File Access via Permission Checking Flaw in macOS
Weaknesses CWE-285

Tue, 12 May 2026 21:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 11 May 2026 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Mon, 11 May 2026 22:00:00 +0000

Type Values Removed Values Added
Title Arbitrary File Access via Permission Checking Flaw in macOS
Weaknesses CWE-284
CWE-285

Mon, 11 May 2026 20:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed with improved permissions checking. This issue is fixed in macOS Tahoe 26.4. A malicious app may be able to access arbitrary files.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-05-12T20:54:03.167Z

Reserved: 2026-03-03T16:36:03.984Z

Link: CVE-2026-28910

cve-icon Vulnrichment

Updated: 2026-05-12T20:53:50.688Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-11T21:18:53.707

Modified: 2026-05-12T22:16:32.983

Link: CVE-2026-28910

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T00:30:28Z

Weaknesses