CVE-2026-34218

MEDIUM

ClearanceKit: Managed and user-defined policy rules not enforced between opfilter start and first policy modification

Title source: cna

Description

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to version 4.2.14, two related startup defects created a window during which only the single compile-time baseline rule was enforced by opfilter. All managed (MDM-delivered) and user-defined file-access rules were not applied until the user interacted with policies through the GUI, triggering a policy mutation over XPC. This issue has been patched in version 4.2.14.

References (3)

Scores

CVSS v3 5.5
EPSS 0.0001
EPSS Percentile 2.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-269
Status published
Products (1)
craigjbass/clearancekit < 4.2.14 (2 CPE variants)
Published Mar 31, 2026
Tracked Since Mar 31, 2026