CVE-2026-20685 | THREATINT

Description

An attacker in a privileged network position may be able to leak sensitive information. A path handling issue was addressed with improved validation. This issue is fixed in PCC Release 5E290.3.

PUBLISHED Reserved 2025-11-11 | Published 2026-05-18 | Updated 2026-05-18 | Assigner apple

Problem types

An attacker in a privileged network position may be able to leak sensitive information.

Product status

Any version before 5E290.3

affected

References

security.apple.com/...ion/private-cloud-compute/releasenotes

cve.org (CVE-2026-20685)

nvd.nist.gov (CVE-2026-20685)

Download JSON