Apple Macos Tahoe vulnerabilities

CVE-2026-20644 [MEDIUM] CVE-2026-20644: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20644 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2026-20605 [MEDIUM] CVE-2026-20605: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20605 Component: Voice Control Impact: An app may be able to crash a system process Description: The issue was addressed with improved memory handling.

CVE-2026-20675 [MEDIUM] CVE-2026-20675: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20675 Component: ImageIO Impact: Processing a maliciously crafted image may lead to disclosure of user information Description: The issue was addressed with improved bounds checks.

CVE-2026-20623 [MEDIUM] CVE-2026-20623: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20623 Component: Foundation Impact: An app may be able to access protected user data Description: A permissions issue was addressed by removing the vulnerable code.

CVE-2026-20618 [MEDIUM] CVE-2026-20618: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20618 Component: System Settings Impact: An app may be able to access user-sensitive data Description: An issue was addressed with improved handling of temporary files.

CVE-2026-20635 [MEDIUM] CVE-2026-20635: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20635 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2026-20637 [MEDIUM] CVE-2026-20637: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20637 Component: AppleKeyStore Impact: An app may be able to cause unexpected system termination Description: A use after free issue was addressed with improved memory management.

CVE-2026-20624 [MEDIUM] CVE-2026-20624: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20624 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: An injection issue was addressed with improved validation.

CVE-2026-20654 [MEDIUM] CVE-2026-20654: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20654 Component: Kernel Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved memory handling.

CVE-2026-20608 [MEDIUM] CVE-2026-20608: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20608 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2026-20603 [MEDIUM] CVE-2026-20603: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20603 Component: Notification Center Impact: An app with root privileges may be able to access private information Description: This issue was addressed with improved redaction of sensitive information.

CVE-2026-20636 [MEDIUM] CVE-2026-20636: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20636 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2026-20673 [MEDIUM] CVE-2026-20673: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20673 Component: Mail Impact: Turning off "Load remote content in messages” may not apply to all mail previews Description: A logic issue was addressed with improved checks.

CVE-2026-20602 [MEDIUM] CVE-2026-20602: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20602 Component: WindowServer Impact: An app may be able to cause a denial-of-service Description: The issue was addressed with improved handling of caches.

CVE-2026-20619 [MEDIUM] CVE-2026-20619: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20619 Component: System Settings Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2026-20662 [MEDIUM] CVE-2026-20662: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20662 Component: Siri Impact: An attacker with physical access to a locked device may be able to view sensitive user information Description: An authorization issue was addressed with improved state management.

CVE-2026-20625 [MEDIUM] CVE-2026-20625: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20625 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2026-20647 [MEDIUM] CVE-2026-20647: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20647 Component: Siri Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved data protection.

CVE-2026-20699 [MEDIUM] CVE-2026-20699: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20699 Component: Spotlight Impact: An app may be able to access user-sensitive data Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2026-20681 [LOW] CVE-2026-20681: macOS Tahoe 26.3 Apple Security Update: About the security content of macOS Tahoe 26.3 Product: macOS Tahoe Version: 26.3 CVE: CVE-2026-20681 Component: Contacts Impact: An app may be able to access information about a user's contacts Description: A privacy issue was addressed with improved private data redaction for log entries.