📦 Xcode

CVE-2021-44228 (Log4Shell) is a critical remote code execution vulnerability in Apache Log4j2 that allows attackers to execute arbitrary code by exploiting JNDI lookups in log messages. This affects a...

CVE-2025-43505 is an out-of-bounds write vulnerability in Xcode that could allow heap corruption when processing malicious files. This affects developers using Xcode for iOS/macOS development. Success...

This vulnerability allows malicious macOS/iOS apps to escape their sandbox restrictions, potentially accessing system resources or other apps' data. It affects developers using Xcode to build apps and...

This CVE describes a sandbox escape vulnerability in Xcode where malicious applications could read and write files outside their designated sandbox boundaries. This affects developers using vulnerable...

This CVE describes an improper permissions vulnerability in Xcode where applications could inherit Xcode's elevated permissions and access user data. It affects macOS users who have Xcode installed an...

This vulnerability in Xcode allows malicious applications to bypass security controls and access Keychain items containing sensitive user data like passwords, certificates, and encryption keys. It aff...

This vulnerability in Xcode allows malicious apps to execute arbitrary code outside their sandbox or with elevated privileges. It affects developers using Xcode on macOS to build applications. The iss...

This vulnerability in Xcode allows malicious applications to gain elevated privileges on macOS systems. It affects developers and users running vulnerable versions of Xcode on macOS....

CVE-2022-22601 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects developers using Xcode versions before 13.3. Success...

CVE-2022-22603 is an out-of-bounds read vulnerability in Apple's Xcode development environment that could allow arbitrary code execution when opening malicious files. This affects developers and organ...

CVE-2022-22605 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects developers using Xcode on macOS to build application...

CVE-2022-22607 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects developers using Xcode on macOS to build application...

This vulnerability allows remote code execution when cloning malicious Git repositories on case-insensitive file systems (Windows/macOS default). Attackers can craft repositories with symbolic links a...

A buffer overflow vulnerability in Xcode allows attackers in privileged network positions to cause denial-of-service conditions. This affects developers using Xcode versions before 26.1. The vulnerabi...

This vulnerability in Xcode allows an attacker to cause a denial-of-service by providing an overly large path value, which crashes the process. It affects developers using Xcode on macOS systems. The ...

This vulnerability in Xcode involves improper path validation that can cause a process crash when processing an overly large path value. It affects developers and systems running vulnerable versions o...

This vulnerability in Xcode allows malicious apps to overwrite arbitrary files on the system due to improper state management. It affects developers using Xcode to build and test applications, potenti...

This vulnerability in Xcode allows malicious applications to access private information they shouldn't have permission to view. It affects developers using Xcode versions before 16.3 to build iOS, mac...

This vulnerability allows an app to gain unauthorized access to Bluetooth functionality on Apple devices. It affects iOS, iPadOS, Xcode, visionOS, watchOS, macOS, and tvOS. The issue was addressed thr...

This CVE describes a permissions vulnerability in Xcode that allows applications to bypass macOS Privacy preferences. This affects developers using Xcode to build applications, potentially allowing th...