Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple xcode vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2004-2687
distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote malicious users to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.
Samba Samba
Apple Xcode 1.5
1 EDB exploit
1 Nmap script
9 Github repositories
7.5
CVSSv2
CVE-2014-9390
Git prior to 1.8.5.6, 1.9.x prior to 1.9.5, 2.0.x prior to 2.0.5, 2.1.x prior to 2.1.4, and 2.2.x prior to 2.2.1 on Windows and OS X; Mercurial prior to 3.2.3 on Windows and OS X; Apple Xcode prior to 6.2 beta 3; mine all versions prior to 08-12-2014; libgit2 all versions up to 0...
Git-scm Git
Mercurial Mercurial
Apple Xcode
Apple Xcode 6.2
Eclipse Egit
Eclipse Jgit
Libgit2 Libgit2
2 Metasploit modules
4 Github repositories
7.5
CVSSv2
CVE-2019-14379
SubTypeValidator.java in FasterXML jackson-databind prior to 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Active Iq Unified Manager
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Redhat Openshift Container Platform 4.1
Redhat Single Sign-on 7.3
Redhat Openshift Container Platform 3.11
Oracle Retail Xstore Point Of Service 15.0
Oracle Primavera Unifier 16.2
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Banking Platform 2.4.1
Oracle Primavera Gateway 16.2
Oracle Primavera Gateway 15.2
1 Github repository
7.5
CVSSv2
CVE-2015-7030
The Swift implementation in Apple Xcode prior to 7.1 mishandles type conversion, which has unspecified impact and attack vectors.
Apple Xcode
7.5
CVSSv2
CVE-2015-1149
Integer overflow in the simulator in Swift in Apple Xcode prior to 6.3 allows context-dependent malicious users to cause a denial of service or possibly have unspecified other impact by triggering an incorrect result of a type conversion.
Apple Xcode
7.5
CVSSv2
CVE-2014-6394
visionmedia send prior to 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote malicious users to access restricted directories, as demonstrated using "public-restricted" under a "public"...
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Apple Xcode 7.0
Joyent Node.js
Joyent Node.js 0.8.2
Joyent Node.js 0.8.1
Joyent Node.js 0.8.0
1 Github repository
7.2
CVSSv2
CVE-2016-4704
otool in Apple Xcode prior to 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4705.
Apple Xcode
7.2
CVSSv2
CVE-2016-4705
otool in Apple Xcode prior to 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4704.
Apple Xcode
7.2
CVSSv2
CVE-2006-5328
OpenBase SQL 10.0 and previous versions, as used in Apple Xcode 2.2 2.2 and previous versions and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file.
Openbase International Ltd Openbase 7.0.15
Openbase International Ltd Openbase
Openbase International Ltd Openbase 9.1.5
Openbase International Ltd Openbase 8.0.4
Apple Xcode
7.2
CVSSv2
CVE-2006-5327
Untrusted search path vulnerability in OpenBase SQL 10.0 and previous versions, as used in Apple Xcode 2.2 2.2 and previous versions and possibly other products, allows local users to execute arbitrary code via a modified PATH that references a malicious gzip program, which is ex...
Openbase International Ltd Openbase 7.0.15
Openbase International Ltd Openbase
Openbase International Ltd Openbase 9.1.5
Openbase International Ltd Openbase 8.0.4
Apple Xcode
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »