Memory Corruption Vulnerability in Xcode by Apple
CVE-2019-8800

7.8HIGH

Key Information:

Vendor: Apple
Status: Xcode
Vendor: CVE Published:; 18 December 2019

Summary

A memory corruption vulnerability in Xcode can be exploited through specially crafted files, potentially enabling arbitrary code execution on affected systems. This security flaw has been addressed with improved validation in Xcode 11.2, making it crucial for users to update their software to mitigate risks associated with this vulnerability.

Affected Version(s)

Xcode < unspecified

References

https://support.apple.com/HT210729

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Dec 18, 2019
Vulnerability Reserved
Feb 18, 2019