Skip to content
operating-system

CVE-2026-28881

Description

CVE-2026-28881 is a privacy issue in the iCloud component of macOS related to how sensitive data was moved/stored. According to Apple's advisory, the flaw could allow an app to access sensitive user data. This was a jointly-credited discovery: Ye Zhang of Baidu Security, Ryan Dowd (@_rdowd), and Csaba Fitzl (@theevilbit) of Iru.

Impact

Exploitation of this vulnerability could allow a local app to access sensitive user data it shouldn't have access to via iCloud. Apple addressed the issue by moving the sensitive data to a protected location in macOS Tahoe 26.4.

Stay up to date

Iru's bi-weekly collection of articles, videos, and research to keep IT & Security teams ahead of the curve.