CVE-2026-20658

Summary

A package validation issue was addressed by blocking the vulnerable package. This issue is fixed in macOS Tahoe 26.3. An app may be able to gain root privileges.

Affected Software

VendorProductVersion RangeStatus
ApplemacOS0 < 26.3affected

Weaknesses

  • An app may be able to gain root privileges

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References