Apple

XCode

95 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-8840

  • EPSS 0.98%
  • Veröffentlicht 27.10.2020 20:15:21
  • Zuletzt bearbeitet 21.11.2024 04:50:34

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 11.3. Compiling with untrusted sources may lead to arbitrary code execution with user privileges.

9.3

CVE-2020-9992

  • EPSS 4.18%
  • Veröffentlicht 16.10.2020 17:15:18
  • Zuletzt bearbeitet 21.11.2024 05:41:39

This issue was addressed by encrypting communications over the network to devices running iOS 14, iPadOS 14, tvOS 14, and watchOS 7. This issue is fixed in iOS 14.0 and iPadOS 14.0, Xcode 12.0. An attacker in a privileged network position may be able...

9.8

CVE-2014-9390

  • EPSS 77.16%
  • Veröffentlicht 12.02.2020 02:15:10
  • Zuletzt bearbeitet 21.11.2024 02:20:45

Git before 1.8.5.6, 1.9.x before 1.9.5, 2.0.x before 2.0.5, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 on Windows and OS X; Mercurial before 3.2.3 on Windows and OS X; Apple Xcode before 6.2 beta 3; mine all versions before 08-12-2014; libgit2 all ve...

5.3

CVE-2019-20372

Exploit
  • EPSS 69.32%
  • Veröffentlicht 09.01.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:38:19

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

7.8

CVE-2019-8806

  • EPSS 0.34%
  • Veröffentlicht 18.12.2019 18:15:43
  • Zuletzt bearbeitet 21.11.2024 04:50:30

A memory corruption issue was addressed with improved validation. This issue is fixed in Xcode 11.2. Processing a maliciously crafted file may lead to arbitrary code execution.

7.8

CVE-2019-8800

  • EPSS 0.34%
  • Veröffentlicht 18.12.2019 18:15:42
  • Zuletzt bearbeitet 21.11.2024 04:50:29

A memory corruption issue was addressed with improved validation. This issue is fixed in Xcode 11.2. Processing a maliciously crafted file may lead to arbitrary code execution.

7.8

CVE-2019-8739

  • EPSS 0.42%
  • Veröffentlicht 18.12.2019 18:15:38
  • Zuletzt bearbeitet 21.11.2024 04:50:23

A memory corruption issue was addressed with improved state management. This issue is fixed in Xcode 11.0. Processing a maliciously crafted file may lead to arbitrary code execution.

7.8

CVE-2019-8738

  • EPSS 0.42%
  • Veröffentlicht 18.12.2019 18:15:37
  • Zuletzt bearbeitet 21.11.2024 04:50:23

A memory corruption issue was addressed with improved state management. This issue is fixed in Xcode 11.0. Processing a maliciously crafted file may lead to arbitrary code execution.

9.3

CVE-2019-8724

  • EPSS 0.6%
  • Veröffentlicht 18.12.2019 18:15:37
  • Zuletzt bearbeitet 21.11.2024 04:50:21

Multiple issues in ld64 in the Xcode toolchains were addressed by updating to version ld64-507.4. This issue is fixed in Xcode 11.0. Compiling code without proper input validation could lead to arbitrary code execution with user privilege.

9.3

CVE-2019-8723

  • EPSS 0.6%
  • Veröffentlicht 18.12.2019 18:15:36
  • Zuletzt bearbeitet 21.11.2024 04:50:21

Multiple issues in ld64 in the Xcode toolchains were addressed by updating to version ld64-507.4. This issue is fixed in Xcode 11.0. Compiling code without proper input validation could lead to arbitrary code execution with user privilege.