Primary

Context

Apple macOS Tahoe Authorization Issue in NSOpenPanel Allowing Access to Sensitive User Data

Vulnerability

Patched

An authorization vulnerability has been identified in the NSOpenPanel component of Apple macOS Tahoe. This issue allows an application to potentially access sensitive user data. The vulnerability arises from inadequate state management in the authorization process.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data by applications.

Remediation

Users can update to macOS Tahoe 26.3 to address this vulnerability.

Added: Feb 11, 2026, 11:30 PM

Updated: Feb 11, 2026, 11:30 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Tahoe Authorization Issue in NSOpenPanel Allowing Access to Sensitive User Data

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating