Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple xcode vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2022-26747
This issue was addressed with improved checks. This issue is fixed in Xcode 13.4. An app may be able to gain elevated privileges.
Apple Xcode
7.2
CVSSv2
CVE-2016-4704
otool in Apple Xcode prior to 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4705.
Apple Xcode
7.2
CVSSv2
CVE-2016-4705
otool in Apple Xcode prior to 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4704.
Apple Xcode
9.3
CVSSv2
CVE-2018-4357
A memory corruption issue was addressed with improved input validation. This issue affected versions prior to Xcode 10.
Apple Xcode
6.8
CVSSv2
CVE-2017-7136
An issue exists in certain Apple products. Xcode prior to 9 is affected. The issue involves the "ld64" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file.
Apple Xcode
6.8
CVSSv2
CVE-2017-7137
An issue exists in certain Apple products. Xcode prior to 9 is affected. The issue involves the "ld64" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file.
Apple Xcode
NA
CVE-2022-32920
The issue was addressed with improved checks. This issue is fixed in Xcode 14.0. Parsing a file may lead to disclosure of user information.
Apple Xcode
10
CVSSv2
CVE-2018-4164
An issue exists in certain Apple products. Xcode prior to 9.3 is affected. The issue, which is unspecified, involves the "LLVM" component.
Apple Xcode
5
CVSSv2
CVE-2015-5909
IDE Xcode Server in Apple Xcode prior to 7.0 does not properly restrict access to repository e-mail lists, which allows remote malicious users to obtain potentially sensitive build information in opportunistic circumstances by leveraging incorrect notification delivery.
Apple Xcode
3.3
CVSSv2
CVE-2015-5910
IDE Xcode Server in Apple Xcode prior to 7.0 does not ensure that server traffic is encrypted, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Xcode
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »