VDB
CESS-2026-28823
CESS-2026-28823
PUBLISHED
CVSS 4.9 MEDIUM
A path handling issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.4. An app with root privileges may be able to delete protected system files.
Risk Scores
CVSS 3.1
4.9
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Timeline
- Mar 25, 2026 CVE Published