Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

A low-severity information disclosure vulnerability exists in Apple's macOS ImageIO framework (CVE-2026-20634) that allows remote attackers to access sensitive data on affected systems. The vulnerability requires interaction with the ImageIO framework to exploit, though the specific attack methods may vary depending on how it's implemented. Security teams should prioritize patching once Apple releases updates, though the low CVSS score of 3.3 indicates this is not an immediate critical threat.