Primary

Context

Apple macOS Tahoe 26 Downgrade Vulnerability in AppleMobileFileIntegrity Allows Access to Protected User Data

Vulnerability

Patched

A downgrade vulnerability in the AppleMobileFileIntegrity component of macOS Tahoe 26 was addressed by implementing additional code-signing restrictions. This issue could have allowed an application to access protected user data. The vulnerability affects several different versions and ranges of macOS, specifically on Intel-based Macs.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data.

Added: Sep 16, 2025, 12:08 AM

Updated: Sep 16, 2025, 12:08 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Tahoe 26 Downgrade Vulnerability in AppleMobileFileIntegrity Allows Access to Protected User Data

Vulnerability

Impact

Affected Products

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating