Primary

Context

Apple macOS Tahoe Symlink Handling Vulnerability Granting Root Privileges

Vulnerability

Patched

A vulnerability exists in the CoreServices component of Apple macOS Tahoe, specifically in the handling of symbolic links. This race condition can be exploited to gain root privileges. The issue has been addressed with improved validation and state management. Users can upgrade to macOS Tahoe 26.3 to mitigate this vulnerability.

Impact

Exploitation of this vulnerability allows an application to gain root privileges on the system.

Remediation

Users can upgrade to macOS Tahoe 26.3 to address this vulnerability.

Added: Feb 12, 2026, 12:22 AM

Updated: Feb 12, 2026, 12:22 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

2.9

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

2.9

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Tahoe Symlink Handling Vulnerability Granting Root Privileges

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating