Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
macOS: A sandbox might be bypassed by a malicious process
CVE-2026-28817
Summary
A security issue was fixed in newer versions of macOS. If left unpatched, a malicious program running in a restricted environment might be able to do more than it's supposed to. Update to macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, or macOS Tahoe 26.4 to fix this issue.
Original title
A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. A sandboxed process may be able to circumvent sandbo...
Original description
A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. A sandboxed process may be able to circumvent sandbox restrictions.
Published: 25 Mar 2026 · Updated: 25 Mar 2026 · First seen: 25 Mar 2026