CVE-2026-20670
Description
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.3. An app may be able to access sensitive user data.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.011
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in macOS Tahoe 26.3 (Software Update) (Auto Reboot) | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Sonoma 14.8.4 (Software Update)(Auto Reboot)(Deployment-Only) | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-613562 | macOS Tahoe 26.3 (Software Update) (Auto Reboot) |
| PATCH-613564 | Mac OS - Sonoma 14.8.4 (Software Update)(Auto Reboot)(Deployment-Only) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234