Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple xcode vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-4705
otool in Apple Xcode prior to 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4704.
Apple Xcode
7.8
CVSSv3
CVE-2016-1765
otool in Apple Xcode prior to 7.3 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Apple Xcode
7.5
CVSSv3
CVE-2021-21300
Git is an open-source distributed revision control system. In affected versions of Git a specially crafted repository that contains symbolic links as well as files using a clean/smudge filter such as Git LFS, may cause just-checked out script to be executed while cloning onto a c...
Git-scm Git
Git-scm Git 2.27.0
Git-scm Git 2.28.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Apple Xcode
Debian Debian Linux 10.0
8 Github repositories
1 Article
7.5
CVSSv3
CVE-2020-11008
Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260(GHSA-qm7j-c969-7j4q). The fix for that bug still left the door open for an exploit where _some_ cred...
Git-scm Git
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Fedoraproject Fedora 31
Fedoraproject Fedora 32
6.5
CVSSv3
CVE-2016-4613
An issue exists in certain Apple products. Safari prior to 10.0.1 is affected. iCloud prior to 6.0.1 is affected. iTunes prior to 12.5.2 is affected. tvOS prior to 10.0.1 is affected. The issue involves the "WebKit" component. It allows remote malicious users to obtain ...
Apple Safari
Apple Icloud
Apple Itunes
Apple Apple Tv 10.0.0
1 Article
6.3
CVSSv3
CVE-2023-27945
This issue was addressed with improved entitlements. This issue is fixed in Xcode 14.3, macOS Big Sur 11.7.7, macOS Monterey 12.6.6. A sandboxed app may be able to collect system logs.
Apple Xcode
6.1
CVSSv3
CVE-2014-4406
Cross-site scripting (XSS) vulnerability in Xcode Server in CoreCollaboration in Apple OS X Server prior to 3.2.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Apple Os X Server 2.2.1
Apple Os X Server 2.0
Apple Os X Server 2.1
Apple Os X Server 2.2.2
Apple Os X Server 3.1
Apple Os X Server 3.0.2
Apple Os X Server
Apple Os X Server 3.0.3
Apple Os X Server 2.2
Apple Os X Server 2.1.1
Apple Os X Server 3.0.1
Apple Os X Server 3.0
Apple Os X Server 3.1.1
5.5
CVSSv3
CVE-2023-40435
This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 15. An app may be able to access App Store credentials.
Apple Xcode
5.5
CVSSv3
CVE-2023-40391
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, macOS Sonoma 14, Xcode 15. An app may be able to disclose kernel memory.
Apple Macos
Apple Iphone Os
Apple Ipados
Apple Tvos
Apple Xcode
5.5
CVSSv3
CVE-2022-32920
The issue was addressed with improved checks. This issue is fixed in Xcode 14.0. Parsing a file may lead to disclosure of user information.
Apple Xcode
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »