Skip to content
operating-system

CVE-2026-28951

Description

CVE-2026-28951 is an authorization issue in the macOS Kernel that was addressed with improved state management. According to Apple's advisory, the flaw could allow an app to gain root privileges. It was reported by Csaba Fitzl (@theevilbit) of Iru.

Impact

Exploitation of this vulnerability could allow a local app to escalate to root privileges by exploiting a kernel-level authorization gap. Apple addressed the issue with improved state management in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, and macOS Tahoe 26.5.

Stay up to date

Iru's bi-weekly collection of articles, videos, and research to keep IT & Security teams ahead of the curve.