CVE-2025-46310

MEDIUM

macOS <15.7.4/<14.8.4 - Privilege Escalation

Title source: llm
STIX 2.1

Description

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26. An attacker with root privileges may be able to delete protected system files.

References (3)

Core 3
Core References
Release Notes, Vendor Advisory
https://support.apple.com/en-us/126349
Release Notes, Vendor Advisory
https://support.apple.com/en-us/126350

Scores

CVSS v3 6.0
EPSS 0.0017
EPSS Percentile 6.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-269
Status published
Products (4)
Apple/macOS < 14.8.4
Apple/macOS < 15.7.4
Apple/macOS < 26
apple/macos 14.0 - 14.8.4
Published Feb 11, 2026
Tracked Since Feb 18, 2026