CVE-2026-20658 | THREATINT

Description

A package validation issue was addressed by blocking the vulnerable package. This issue is fixed in macOS Tahoe 26.3. An app may be able to gain root privileges.

PUBLISHED Reserved 2025-11-11 | Published 2026-02-11 | Updated 2026-02-13 | Assigner apple

Problem types

An app may be able to gain root privileges

Product status

Any version before 26.3

affected

References

support.apple.com/en-us/126348

cve.org (CVE-2026-20658)

nvd.nist.gov (CVE-2026-20658)

Download JSON