Primary

Context

Apple Music Directory Path Validation Vulnerability Allowing Access to Sensitive User Data

Vulnerability

Patched

A vulnerability exists in the Apple Music application on macOS Tahoe, specifically version 26.4, due to improper validation of directory paths. This parsing issue may enable an application to access sensitive user data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data by an application.

Added: Mar 25, 2026, 2:48 AM

Updated: Mar 25, 2026, 2:48 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Music Directory Path Validation Vulnerability Allowing Access to Sensitive User Data

Vulnerability

Impact

Affected Products

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating