Apple

XCode

92 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-7134

  • EPSS 0.5%
  • Veröffentlicht 23.10.2017 01:29:13
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. Xcode before 9 is affected. The issue involves the "ld64" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a ...

7.5

CVE-2017-7529

  • EPSS 91.91%
  • Veröffentlicht 13.07.2017 13:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.

7.8

CVE-2016-4705

  • EPSS 0.05%
  • Veröffentlicht 18.09.2016 22:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4704.

7.8

CVE-2016-4704

  • EPSS 0.05%
  • Veröffentlicht 18.09.2016 22:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors, a different vulnerability than CVE-2016-4705.

7.8

CVE-2016-1765

  • EPSS 0.06%
  • Veröffentlicht 24.03.2016 01:59:33
  • Zuletzt bearbeitet 12.04.2025 10:46:40

otool in Apple Xcode before 7.3 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors.

5.3

CVE-2016-0747

  • EPSS 33.18%
  • Veröffentlicht 15.02.2016 19:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution.

9.8

CVE-2016-0746

  • EPSS 14.01%
  • Veröffentlicht 15.02.2016 19:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response relate...

7.5

CVE-2016-0742

  • EPSS 80.36%
  • Veröffentlicht 15.02.2016 19:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.

4.6

CVE-2015-7057

  • EPSS 0.07%
  • Veröffentlicht 11.12.2015 11:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

otools in Apple Xcode before 7.2 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted mach-o file, a different vulnerability than CVE-2015-7049.

5

CVE-2015-7056

  • EPSS 0.31%
  • Veröffentlicht 11.12.2015 11:59:22
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IDE SCM in Apple Xcode before 7.2 does not recognize .gitignore files, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging the presence of a file matching an ignore pattern.