cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-44228,https://securityvulnerability.io/vulnerability/CVE-2024-44228,Permissions Inheritance Vulnerability in Xcode by Apple,The vulnerability involves inadequate permission checks within Xcode that may allow a malicious app to inherit the permissions of Xcode itself. This could potentially grant unauthorized access to sensitive user data. The issue has been addressed in Xcode 16 with improved permissions verification mechanisms to ensure user data remains protected. Users are advised to update to the latest version to safeguard against this vulnerability.,Apple,Xcode,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44191,https://securityvulnerability.io/vulnerability/CVE-2024-44191,iOS Fixes Bluetooth Access Issues,"This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, Xcode 16, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. An app may gain unauthorized access to Bluetooth.",Apple,"Mac OS,iPad OS,iPhone OS,Visionos,Watch OS,TV OS,Xcode",5.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-09-17T00:15:00.000Z,0
CVE-2024-40862,https://securityvulnerability.io/vulnerability/CVE-2024-40862,Appleaddresses Privacy Issue in Xcode 16,A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer.,Apple,Xcode,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-09-17T00:15:00.000Z,0
CVE-2024-44162,https://securityvulnerability.io/vulnerability/CVE-2024-44162,Xcode 16 patches keychain vulnerability,"A vulnerability has been identified in Apple's Xcode 16 that could allow a malicious application to access sensitive Keychain items belonging to users. This issue was mitigated through the implementation of a hardened runtime, enhancing the overall security posture of the development environment. Developers utilizing Xcode 16 should be aware of this vulnerability and ensure their applications correctly handle Keychain interactions to protect user data from unauthorized access.",Apple,Xcode,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-09-17T00:15:00.000Z,0
CVE-2024-23298,https://securityvulnerability.io/vulnerability/CVE-2024-23298,Improved State Management for Enhanced Security,"A logic issue within Apple's software has been addressed by implementing improved state management, enhancing system security. This vulnerability could potentially be exploited, affecting users across various Apple platforms. Keeping systems updated is crucial to maintain security and prevent exploitation of similar vulnerabilities.",Apple,Xcode,5.5,MEDIUM,0.00044999999227002263,false,,false,false,true,2024-12-19T03:12:10.000Z,true,false,false,,2024-03-15T22:29:38.958Z,0
CVE-2023-40435,https://securityvulnerability.io/vulnerability/CVE-2023-40435,Credential Access Vulnerability in Apple Xcode Product,"This vulnerability affects Apple's Xcode product where an app may inadvertently access App Store credentials. The issue was mitigated by enabling a hardened runtime, which enhances security by restricting certain actions that could be exploited. Users are encouraged to update to the latest version, Xcode 15, to ensure they are protected from this and other vulnerabilities.",Apple,Xcode,5.5,MEDIUM,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-09-27T15:19:00.000Z,0
CVE-2023-40391,https://securityvulnerability.io/vulnerability/CVE-2023-40391,Memory Disclosure Vulnerability in Apple Operating Systems,"A memory handling issue has been identified in Apple's operating systems, which could allow an application to disclose sensitive kernel memory. This flaw affects users running tvOS 17, iOS 17, iPadOS 17, macOS Sonoma 14, and Xcode 15. Apple has implemented fixes to mitigate this risk, ensuring improved memory management practices in its latest updates.",Apple,"iOS And iPad OS,Xcode,TV OS,Mac OS",5.5,MEDIUM,0.0007900000200606883,false,,false,false,false,,,false,false,,2023-09-27T15:19:00.000Z,0
CVE-2023-32396,https://securityvulnerability.io/vulnerability/CVE-2023-32396,Privilege Escalation Vulnerability in Apple Products,"A security vulnerability exists in Apple’s operating systems that could allow an application to gain elevated privileges, potentially compromising user data. Apple has addressed this issue with enhanced validation checks in multiple product updates, including iOS 17, iPadOS 17, macOS Sonoma 14, tvOS 17, watchOS 10, and Xcode 15. Users are encouraged to update their devices to the latest versions to mitigate this risk.",Apple,"iOS and iPadOS,Xcode,tvOS,macOS,watchOS",7.8,HIGH,0.0008099999977275729,false,,false,false,false,,,false,false,,2023-09-27T15:18:00.000Z,0
CVE-2022-32920,https://securityvulnerability.io/vulnerability/CVE-2022-32920,File Parsing Vulnerability in Xcode by Apple,"A vulnerability in Xcode allows for improper checks during file parsing, potentially leading to the disclosure of sensitive user information. Users are encouraged to update to Xcode 14.0 to mitigate this issue. For detailed information, refer to the Apple support page.",Apple,Xcode,5.5,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2023-09-06T01:36:26.659Z,0
CVE-2023-27967,https://securityvulnerability.io/vulnerability/CVE-2023-27967,Arbitrary Code Execution Vulnerability in Xcode by Apple,"The vulnerability in Xcode arises from inadequate memory handling, which allows an application to execute arbitrary code outside its designated sandbox environment, potentially leading to unauthorized access and actions with elevated privileges. This issue has been resolved in Xcode version 14.3, enhancing overall app security and protecting against exploitation.",Apple,Xcode,8.6,HIGH,0.0006500000017695129,false,,false,false,false,,,false,false,,2023-05-08T00:00:00.000Z,0
CVE-2023-27945,https://securityvulnerability.io/vulnerability/CVE-2023-27945,Sandboxed Application Vulnerability in Apple Xcode and macOS Versions,"A vulnerability has been identified in Apple's Xcode and certain versions of macOS, where a sandboxed application could potentially access sensitive system logs. This was addressed by implementing enhanced entitlements to restrict the capabilities of applications in a restricted environment. The issue has been resolved in the latest updates of Xcode and macOS, ensuring improved security measures are in place to protect system data from unauthorized access.",Apple,"Mac OS,Xcode",6.3,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2023-05-08T00:00:00.000Z,0
CVE-2022-42797,https://securityvulnerability.io/vulnerability/CVE-2022-42797,Injection Issue in Xcode Products by Apple,"An injection vulnerability was identified in Xcode, allowing a malicious application to potentially acquire root privileges due to improper input validation. This issue was rectified in Xcode 14.1, enhancing the overall security posture by ensuring robust checks on user input.",Apple,Xcode,7.8,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2023-02-27T00:00:00.000Z,0
CVE-2022-26747,https://securityvulnerability.io/vulnerability/CVE-2022-26747,Privilege Escalation Vulnerability in Xcode by Apple,"A privilege escalation issue exists in Xcode that may allow an app to gain elevated privileges. This vulnerability was addressed with improved checks in Xcode 13.4, ensuring enhanced security for applications developed using this tool. Users are encouraged to update to the latest version to mitigate potential risks associated with this vulnerability.",Apple,Xcode,7.8,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2022-05-26T19:09:32.000Z,0
CVE-2022-22607,https://securityvulnerability.io/vulnerability/CVE-2022-22607,Out-of-Bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability in Xcode can be exploited through maliciously crafted files. This flaw can lead to unexpected application termination or enable the execution of arbitrary code, jeopardizing the integrity of user data and the security of the development environment. Apple has addressed this issue with enhanced bounds checking in Xcode 13.3 to prevent potential exploitation.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:33.000Z,0
CVE-2022-22605,https://securityvulnerability.io/vulnerability/CVE-2022-22605,Out-of-Bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability in Xcode could be exploited by opening a specially crafted file, potentially leading to unexpected application termination or arbitrary code execution. Apple has addressed this issue with improved bounds checking in Xcode 13.3, enhancing the security of its development tools against malicious file attacks.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:32.000Z,0
CVE-2022-22608,https://securityvulnerability.io/vulnerability/CVE-2022-22608,Out-of-bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability in Xcode was resolved with improved bounds checking. This flaw could allow an attacker to open a specially crafted file, potentially resulting in unexpected application crashes or arbitrary code execution.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:31.000Z,0
CVE-2022-22603,https://securityvulnerability.io/vulnerability/CVE-2022-22603,Out-of-Bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability in Apple's Xcode can lead to unexpected application termination or arbitrary code execution when a maliciously crafted file is processed. This risk is mitigated in Xcode version 13.3, which includes improved bounds checking to address the issue effectively.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:30.000Z,0
CVE-2022-22601,https://securityvulnerability.io/vulnerability/CVE-2022-22601,Out-of-Bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability in Xcode may allow attackers to craft malicious files that, when opened, could lead to unexpected application termination or arbitrary code execution. This issue highlights the importance of proper bounds checking and is resolved in the latest release of Xcode (13.3). For more details about this issue, visit the Apple support page.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:29.000Z,0
CVE-2022-22606,https://securityvulnerability.io/vulnerability/CVE-2022-22606,Out-of-bounds Read Vulnerability in Xcode by Apple,"An out-of-bounds read vulnerability was identified in Xcode, which could allow an attacker to manipulate file input in such a way that a maliciously crafted file triggers unexpected application termination or even permits arbitrary code execution. To mitigate this issue, the client has implemented enhanced bounds checking in Xcode version 13.3.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:29.000Z,0
CVE-2022-22602,https://securityvulnerability.io/vulnerability/CVE-2022-22602,Out-of-Bounds Read Vulnerability in Xcode by Apple,An out-of-bounds read vulnerability in Xcode can be exploited when a user opens a specially crafted file. This can lead to unexpected application termination or allow for arbitrary code execution. Apple has addressed this issue in Xcode 13.3 by implementing improved bounds checking to enhance security and protect users from potential attacks.,Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:28.000Z,0
CVE-2022-22604,https://securityvulnerability.io/vulnerability/CVE-2022-22604,Out-of-Bounds Read in Xcode from Apple,"An out-of-bounds read vulnerability in Xcode was identified, allowing a maliciously crafted file to cause unexpected application termination or potentially allow arbitrary code execution. This issue has been mitigated in Xcode 13.3 through improved bounds checking protocols. Users are strongly advised to update to this version to protect against this security risk.",Apple,Xcode,7.8,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-03-18T17:59:27.000Z,0
CVE-2021-1800,https://securityvulnerability.io/vulnerability/CVE-2021-1800,,A path handling issue was addressed with improved validation. This issue is fixed in Xcode 12.4. A malicious application may be able to access arbitrary files on the host device while running an app that uses on-demand resources with Xcode.,Apple,Xcode,5.5,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2021-04-02T18:04:16.000Z,0
CVE-2019-8840,https://securityvulnerability.io/vulnerability/CVE-2019-8840,,An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 11.3. Compiling with untrusted sources may lead to arbitrary code execution with user privileges.,Apple,Xcode,8.8,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2020-10-27T19:54:33.000Z,0
CVE-2020-9992,https://securityvulnerability.io/vulnerability/CVE-2020-9992,,"This issue was addressed by encrypting communications over the network to devices running iOS 14, iPadOS 14, tvOS 14, and watchOS 7. This issue is fixed in iOS 14.0 and iPadOS 14.0, Xcode 12.0. An attacker in a privileged network position may be able to execute arbitrary code on a paired device during a debug session over the network.",Apple,"iOS,Xcode",7.8,HIGH,0.0015699999639764428,false,,false,false,true,2020-09-16T23:35:22.000Z,true,false,false,,2020-10-16T16:56:27.000Z,0
CVE-2019-8800,https://securityvulnerability.io/vulnerability/CVE-2019-8800,,A memory corruption issue was addressed with improved validation. This issue is fixed in Xcode 11.2. Processing a maliciously crafted file may lead to arbitrary code execution.,Apple,Xcode,7.8,HIGH,0.0007200000109151006,false,,false,false,false,,,false,false,,2019-12-18T17:33:23.000Z,0