File Access Policy Bypass in ClearanceKit on macOS
CVE-2026-40604

8.2HIGH

Key Information:

Vendor: Craigjbass
Status: Clearancekit
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-40604?

ClearanceKit, an endpoint security system for macOS, previously had a vulnerability where its opfilter system extension could be suspended or terminated by any root process. This led to a significant security risk, as all AUTH Endpoint Security events would time out and revert to a default 'allow' state, effectively disabling the enforcement of file access policies during this period. This flaw has been addressed in version 5.0.6.

Affected Version(s)

clearancekit < 5.0.6

References

https://github.com/craigjbass/clearancekit/security/advis...

x_refsource_CONFIRM

CVSS V4

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 14, 2026

CVE-2026-40604 Data

JSON

Craigjbass

What is CVE-2026-40604?

Affected Version(s)

References

CVSS V4

Timeline