{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28831", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2026-03-03T16:36:03.968Z", "datePublished": "2026-03-25T00:31:48.005Z", "dateUpdated": "2026-03-25T00:31:48.005Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "An app may be able to access sensitive user data"}]}], "affected": [{"vendor": "Apple", "product": "macOS", "versions": [{"version": "0", "status": "affected", "lessThan": "14.8.5", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "15.7.5", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "26.4", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data."}], "references": [{"url": "https://support.apple.com/en-us/126794"}, {"url": "https://support.apple.com/en-us/126795"}, {"url": "https://support.apple.com/en-us/126796"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-03-25T00:31:48.005Z"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data."}], "id": "CVE-2026-28831", "lastModified": "2026-03-25T15:41:33.977", "metrics": {}, "published": "2026-03-25T01:17:08.187", "references": [{"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126794"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126795"}, {"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/126796"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Awaiting Analysis"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,14.8.5)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,15.7.5)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,26.4)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "macOS", "source": "cna", "vendor": "Apple"}, "product": "macos", "vendor": "apple"}], "analysis": {"en": {"generated_at": "2026-03-25T02:49:37.540659+00:00", "value": {"mitigation_remediation": ["Update macOS to the latest available release: macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, or macOS Tahoe 26.4.", "If an immediate update is not possible, limit the installation of new applications from untrusted sources and review the permissions granted to existing third\u2011party apps.", "Monitor system logs for anomalous data access patterns that could indicate exploitation of this authorization flaw."], "summary": {"action": "Apply Update", "impact": "Unauthorized Sensitive Data Access"}, "threat_synthesis": {"affected_systems": "Apple macOS is impacted. The flaw is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, and macOS Tahoe 26.4, which means any earlier release is potentially vulnerable. Users running versions prior to those patched releases should be aware that any third\u2011party application with read capabilities might bypass normal authorization checks and retrieve protected data.", "description_and_impact": "The vulnerability is an authorization issue that resulted from improper state management within the operating system. Because the security controls that normally restrict which applications can read certain user data are not enforced correctly, a malicious or even benign app may be able to access sensitive data that belongs to a different user or system component. This represents a direct breach of confidentiality, as the attacker does not need to complete a separate credential compromise to obtain the information. The weakness is a classic case of unauthorized information disclosure through improper authorization enforcement.", "risk_and_exploitability": "The CVSS score is not publicly available and the EPSS score is not reported, so the precise exploitation likelihood is unknown, but the breach of sensitive data is inherently severe. The vulnerability is not listed in the CISA KeV catalog. Based on the description, it is likely that an application already installed or a custom script could exploit the vulnerability in a local context, without requiring network connectivity or additional infection vectors. Because the flaw is tied to state management, it would not require privileged execution beyond the context of the affected application."}}}}, "created": "2026-03-25T11:36:56.064687+00:00", "title": "Authorization Bypass Allows Sensitive Data Access in macOS", "updated": "2026-03-25T20:56:40.758913+00:00", "vendors": ["apple", "apple$PRODUCT$macos"], "weaknesses": ["CWE-285", "CWE-200"]}