Description
CVE-2026-20617 is a race condition within the CoreServices component of macOS. According to Apple's advisory, the flaw could allow an app to gain root privileges. This was a jointly-credited discovery: Golden Helm Securities, Gergely Kalman (@gergely_kalman), and Csaba Fitzl (@theevilbit) of Iru.
Impact
Exploitation of this vulnerability could allow a local app to escalate to root privileges by winning a race condition in CoreServices. Apple addressed the issue with improved state handling in macOS Tahoe 26.3.
CVE-2026-20615
A critical vulnerability in macOS allows local apps to escalate to root privileges. Learn about CVE-2026-20615 and other recent security issues affecting Apple devices.
Learn MoreCVE-2025-24167
CVE-2025-24167 is a security vulnerability in Apple's Safari browser and operating systems that could allow a download's origin to be incorrectly associated. The issue was addressed by Apple through improved state management in Safari 18.4, iOS 18.4, iPadOS 18.4, and macOS Sequoia 15.4.
Learn MoreCVE-2024-40783
CVE-2024-40783 is a security vulnerability in Apple's macOS that could allow a malicious application to bypass Privacy preferences. The issue was addressed by Apple through improved restriction of data container access in macOS Sonoma 14.6, macOS Ventura 13.6.8, and macOS Monterey 12.7.6.
Learn More