CVE-2026-20620

Summary

An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3. An attacker may be able to cause unexpected system termination or read kernel memory.

Affected Software

VendorProductVersion RangeStatus
ApplemacOS0 < 14.8.4affected
ApplemacOS0 < 15.7.4affected
ApplemacOS0 < 26.3affected

Weaknesses

  • An attacker may be able to cause unexpected system termination or read kernel memory

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References