Severity by source
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Lifecycle Timeline
4DescriptionCVE.org
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Tahoe 26.4. A malicious app may be able to break out of its sandbox.
AnalysisAI
A logic issue in macOS Tahoe allows a malicious application to escape its sandbox and execute code outside of the restricted security boundary. This vulnerability affects macOS versions prior to 26.4 and represents a critical sandbox bypass that could enable arbitrary code execution with elevated privileges. While no CVSS score or active exploitation data is currently available, the sandbox escape capability makes this a high-priority patch for all affected macOS users.
Technical ContextAI
The vulnerability is rooted in a logic flaw within macOS's application sandbox enforcement mechanism, a core security feature that restricts application capabilities and file system access. macOS implements a mandatory access control (MAC) framework that prevents applications from accessing sensitive system resources and user data unless explicitly granted permission. This vulnerability allows a malicious application to circumvent these restrictions through improved logic handling, affecting the core operating system (cpe:2.3:a:apple:macos). The root cause appears to be improper validation or enforcement of sandbox boundaries rather than a memory corruption issue, suggesting the flaw may involve authorization decisions, capability delegation, or privilege escalation logic.
RemediationAI
Immediately upgrade to macOS Tahoe 26.4 or later, which contains the improved sandbox restriction logic to address this vulnerability. Users should navigate to System Settings > General > Software Update and install the latest available macOS version. Until patching is completed, temporarily mitigate risk by disabling installation of untrusted applications, restricting admin account usage, and using additional security tools such as third-party endpoint detection and response (EDR) solutions. Review the official Apple security advisory at https://support.apple.com/en-us/126794 for detailed patching instructions and any known compatibility issues.
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-15095