CVE-2026-28881
MEDIUMApple macOS <26.4 - Info Disclosure
Title source: llmDescription
A privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sensitive user data.
References (1)
Scores
CVSS v3
5.5
EPSS
0.0003
EPSS Percentile
6.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-285
Status
published
Products (2)
Apple/macOS
< 26.4
apple/macos
< 26.4
Published
Mar 25, 2026
Tracked Since
Mar 25, 2026