CVE-2026-20662 | THREATINT

Description

An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.4, macOS Tahoe 26.3. An attacker with physical access to a locked device may be able to view sensitive user information.

PUBLISHED Reserved 2025-11-11 | Published 2026-02-11 | Updated 2026-02-13 | Assigner apple

Problem types

An attacker with physical access to a locked device may be able to view sensitive user information

Product status

Any version before 26.3

affected

Any version before 15.7

affected

References

support.apple.com/en-us/126348

support.apple.com/en-us/126349

cve.org (CVE-2026-20662)

nvd.nist.gov (CVE-2026-20662)

Download JSON