Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
MacOS Tahoe 26.4: Malicious apps can delete sensitive system files
CVE-2026-28823
Summary
A security issue in macOS Tahoe 26.4 allows a malicious app with elevated privileges to delete protected system files. This could potentially lead to data loss or system instability. To stay secure, update to the latest version of macOS Tahoe 26.4.
Original title
A path handling issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.4. An app with root privileges may be able to delete protected system files.
Original description
A path handling issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.4. An app with root privileges may be able to delete protected system files.
Published: 25 Mar 2026 · Updated: 25 Mar 2026 · First seen: 25 Mar 2026