Primary

Context

Apple Messages Race Condition Vulnerability Allowing Sandbox Bypass

Vulnerability

Patched

A race condition vulnerability has been identified in the Messages app on multiple Apple platforms, including macOS Tahoe 26.3, macOS Sonoma 14.8.4, iOS 18.7.5, iPadOS 18.7.5, and visionOS 26.3. This vulnerability allows a shortcut to potentially bypass sandbox restrictions, which could lead to unauthorized access or actions within the app's sandboxed environment.

Impact

Exploitation of this vulnerability could allow an app to break out of its sandbox, potentially leading to unauthorized access to sensitive user data or system resources.

Added: Feb 11, 2026, 11:25 PM

Updated: Feb 11, 2026, 11:25 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.8

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.8

remediation

7.7

relevance

3.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Messages Race Condition Vulnerability Allowing Sandbox Bypass

Vulnerability

Impact

Affected Products

Apple macOS Tahoe

Apple iPadOS

Apple visionOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating