CVE-2026-28888 | Apple macOS up to 14.8.4/15.7.4/26.3 App race condition

March 25, 2026 Yanac

A vulnerability identified as critical has been detected in Apple macOS up to 14.8.4/15.7.4/26.3. The affected element is an unknown function of the component App. This manipulation causes race condition.

This vulnerability appears as CVE-2026-28888. The attack requires local access. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-28862 | Apple macOS up to 14.8.4/15.7.4/26.3 App information disclosure
CVE-2026-28886 | Apple iOS/iPadOS/macOS/tvOS/visionOS/watchOS up to 18.7.6/26.3 null pointer dereference