CVE-2026-28909: Users who connect to malicious registries with hostnames matching the bypass patterns will have their registry credentials exposed in plaintext. in Apple macOS
CVE-2026-28909 is a vulnerability in Apple macOS container version 0. 12. 1 where users connecting to malicious registries with hostnames matching certain bypass patterns may have their registry credentials exposed in plaintext. The issue has been fixed in container version 0. 12. 3. There is no CVSS score available for this vulnerability, and no known exploits in the wild have been reported. The vulnerability specifically affects the handling of registry credentials when connecting to certain hostnames, leading to potential credential disclosure.
AI Analysis
Technical Summary
This vulnerability in Apple macOS container version 0.12.1 allows an attacker controlling a malicious registry with a hostname matching bypass patterns to cause the system to expose registry credentials in plaintext. The exposure occurs during connection attempts to these registries. The issue is resolved in container version 0.12.3. No further technical details or CVSS scoring are provided.
Potential Impact
The impact of this vulnerability is the exposure of registry credentials in plaintext to malicious registries under specific hostname conditions. This could lead to credential compromise if users connect to such malicious registries. There are no known exploits in the wild at this time.
Mitigation Recommendations
Upgrade affected Apple macOS container software from version 0.12.1 to version 0.12.3 or later, where this vulnerability is fixed. No other mitigation guidance is provided or necessary as the issue is resolved in the updated version.
CVE-2026-28909: Users who connect to malicious registries with hostnames matching the bypass patterns will have their registry credentials exposed in plaintext. in Apple macOS
Description
CVE-2026-28909 is a vulnerability in Apple macOS container version 0. 12. 1 where users connecting to malicious registries with hostnames matching certain bypass patterns may have their registry credentials exposed in plaintext. The issue has been fixed in container version 0. 12. 3. There is no CVSS score available for this vulnerability, and no known exploits in the wild have been reported. The vulnerability specifically affects the handling of registry credentials when connecting to certain hostnames, leading to potential credential disclosure.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in Apple macOS container version 0.12.1 allows an attacker controlling a malicious registry with a hostname matching bypass patterns to cause the system to expose registry credentials in plaintext. The exposure occurs during connection attempts to these registries. The issue is resolved in container version 0.12.3. No further technical details or CVSS scoring are provided.
Potential Impact
The impact of this vulnerability is the exposure of registry credentials in plaintext to malicious registries under specific hostname conditions. This could lead to credential compromise if users connect to such malicious registries. There are no known exploits in the wild at this time.
Mitigation Recommendations
Upgrade affected Apple macOS container software from version 0.12.1 to version 0.12.3 or later, where this vulnerability is fixed. No other mitigation guidance is provided or necessary as the issue is resolved in the updated version.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2026-03-03T16:36:03.984Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69f3d61dcbff5d86109e92eb
Added to database: 4/30/2026, 10:22:21 PM
Last enriched: 4/30/2026, 10:36:24 PM
Last updated: 5/1/2026, 12:24:59 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.