{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20670", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2025-11-11T14:43:07.866Z", "datePublished": "2026-03-25T00:31:41.236Z", "dateUpdated": "2026-03-25T00:31:41.236Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "An app may be able to access sensitive user data"}]}], "affected": [{"vendor": "Apple", "product": "macOS", "versions": [{"version": "0", "status": "affected", "lessThan": "14.8.4", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "26.3", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "An authorization issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.3. An app may be able to access sensitive user data."}], "references": [{"url": "https://support.apple.com/en-us/126348"}, {"url": "https://support.apple.com/en-us/126350"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-03-25T00:31:41.236Z"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An authorization issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.3. An app may be able to access sensitive user data."}], "id": "CVE-2026-20670", "lastModified": "2026-03-25T15:41:58.280", "metrics": {}, "published": "2026-03-25T01:17:05.283", "references": [{"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126348"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126350"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Awaiting Analysis"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,14.8.4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,26.3)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "macOS", "source": "cna", "vendor": "Apple"}, "product": "macos", "vendor": "apple"}], "analysis": {"en": {"generated_at": "2026-03-25T02:28:42.325972+00:00", "value": {"mitigation_remediation": ["Update macOS to the latest version (Sonoma 14.8.4 or Tahoe 26.3) via the Software Update feature.", "Verify that the update has been installed successfully and that the system reports the correct version number.", "Limit the installation and execution of unfamiliar or untrusted applications to reduce the chance that a malicious app exploits the state\u2011management flaw.", "Keep the operating system and all third\u2011party applications up\u2011to\u2011date to avoid similar authorization or privilege\u2011related issues."], "summary": {"action": "Apply Patch", "impact": "Unauthorized Sensitive Data Access"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Apple macOS. Versions before macOS Sonoma 14.8.4 and macOS Tahoe 26.3 are impacted. No other vendors or products are listed in the advisories.", "description_and_impact": "Apple\u2019s macOS includes an authorization flaw caused by insufficient state management. The flaw allows an application to bypass normal authentication or authorization checks, enabling it to read or manipulate sensitive user data. This could compromise user privacy without the user\u2019s explicit consent.", "risk_and_exploitability": "The CVSS score is not provided, and EPSS data is unavailable, so the quantitative severity is unclear. Because the issue permits elevated data access on a local system, the likely attack vector is a locally installed or otherwise trusted application exploiting the state\u2011management gap during an active session. While no public exploits are reported and the vulnerability is not listed in KEV, the potential for privacy breach makes it a notable risk for systems running the affected OS versions."}}}}, "created": "2026-03-25T11:37:01.533193+00:00", "title": "macOS Authorization Issue Allowing App Access to Sensitive User Data", "updated": "2026-03-25T20:56:46.384297+00:00", "vendors": ["apple", "apple$PRODUCT$macos"], "weaknesses": ["CWE-285", "CWE-287"]}