Improper Cache Handling in macOS Tahoe by Apple
CVE-2025-46278

5MEDIUM

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 17 December 2025

What is CVE-2025-46278?

A vulnerability in Apple's macOS Tahoe arises from improper handling of caches, potentially allowing an application to access protected user data. This flaw has been addressed in version 26.2 of macOS Tahoe, emphasizing the importance of secure cache management to safeguard user privacy.

Affected Version(s)

macOS < 26.2

References

https://support.apple.com/en-us/125886

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Dec 17, 2025
Vulnerability Reserved
Apr 22, 2025

JSON