CVE-2026-28919
macOS Privilege Escalation in Sequoia Sonoma Tahoe
Publication date: 2026-05-11
Last updated on: 2026-05-11
Assigner: Apple Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apple | macos_sequoia | 15.7.7 |
| apple | macos_sonoma | 14.8.7 |
| apple | macos_tahoe | 26.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a consistency issue related to state handling in certain versions of macOS. Due to this issue, an application may be able to gain root privileges, which means it could execute actions with the highest level of system access.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow an application to gain root privileges on affected macOS systems. This means an attacker could potentially take full control of the system, access sensitive data, modify system settings, install malicious software, or disrupt normal operations.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update your macOS system to one of the fixed versions: macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, or macOS Tahoe 26.5.