Primary

Context

Apple macOS Notes Path Handling Vulnerability Allowing Unauthorized File Deletion

Vulnerability

Patched

A path handling vulnerability has been identified in the Notes application on macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, and macOS Tahoe 26.4. This vulnerability allows an application to delete files without proper permission. The issue arises from inadequate validation of file paths, which could be exploited to manipulate file deletion processes.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of files, potentially causing data loss or disruption of normal user activities.

Added: Mar 25, 2026, 2:25 AM

Updated: Mar 25, 2026, 2:25 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Notes Path Handling Vulnerability Allowing Unauthorized File Deletion

Vulnerability

Impact

Affected Products

Apple macOS Sequoia

Apple macOS Sonoma

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating