Primary

Context

Apple macOS Sequoia Race Condition Vulnerability in LaunchServices Allowing Sandbox Bypass

Vulnerability

Patched

A race condition vulnerability has been identified in the LaunchServices component of Apple macOS Sequoia. This issue allows an application to break out of its sandbox, potentially leading to unauthorized access or actions within the system. The vulnerability was addressed in macOS Sequoia 15.1, released on October 28, 2024.

Impact

Exploitation of this vulnerability could allow an app to escape its sandbox restrictions, potentially leading to unauthorized access or actions within the system.

Remediation

Users can upgrade to macOS Sequoia 15.1 to address this vulnerability.

Added: Apr 2, 2026, 9:47 PM

Updated: Apr 2, 2026, 9:47 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

2.9

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

2.9

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Sequoia Race Condition Vulnerability in LaunchServices Allowing Sandbox Bypass

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Sequoia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating