{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28820", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2026-03-03T16:36:03.967Z", "datePublished": "2026-03-25T00:32:01.392Z", "dateUpdated": "2026-03-25T00:32:01.392Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "An app may be able to access sensitive user data"}]}], "affected": [{"vendor": "Apple", "product": "macOS", "versions": [{"version": "0", "status": "affected", "lessThan": "26.4", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "This issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data."}], "references": [{"url": "https://support.apple.com/en-us/126794"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-03-25T00:32:01.392Z"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "6CF848CD-25D4-4371-BEF3-1ACCE47AD81F", "versionEndExcluding": "26.4", "versionStartIncluding": "26.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "This issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data."}], "id": "CVE-2026-28820", "lastModified": "2026-03-25T21:31:28.613", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-25T01:17:07.177", "references": [{"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/126794"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,26.4)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "macOS", "source": "cna", "vendor": "Apple"}, "product": "macos", "vendor": "apple"}], "analysis": {"en": {"generated_at": "2026-03-25T03:37:11.413542+00:00", "value": {"mitigation_remediation": ["Upgrade macOS to version 26.4 or later to receive the fix.", "If an upgrade is not immediately possible, restrict installation of untrusted applications and monitor for anomalous data access.", "Verify system integrity by ensuring that only vetted apps are installed."], "summary": {"action": "Immediate Patch", "impact": "Sensitive Data Exposure"}, "threat_synthesis": {"affected_systems": "The vulnerability affected Apple macOS Tahoe versions prior to 26.4. The fix is delivered in macOS Tahoe 26.4 and later releases.", "description_and_impact": "Apple's macOS Tahoe had missing security checks that could allow an application to read protected user data without proper authorization. This flaw enables unauthorized disclosure of confidential information, representing an information exposure weakness.", "risk_and_exploitability": "No EPSS score is available, and the vulnerability is not listed in the KEV catalog, suggesting that widespread exploitation is not documented. The likely attack vector is local, requiring that the user run an unauthorized application or be persuaded to do so. While exploitation may need user interaction, the potential for sensitive data exposure remains significant. Prompt mitigation is advised."}}}}, "created": "2026-03-25T11:36:44.746679+00:00", "title": "macOS Tahoe Vulnerability Enables Unauthorized Access to Sensitive User Data", "updated": "2026-03-25T20:56:28.216988+00:00", "vendors": ["apple", "apple$PRODUCT$macos"], "weaknesses": ["CWE-200"]}