File Parsing Vulnerability in Xcode by Apple
CVE-2022-32920

5.5MEDIUM

Key Information:

Vendor: Apple
Status: Xcode
Vendor: CVE Published:; 6 September 2023

What is CVE-2022-32920?

A vulnerability in Xcode allows for improper checks during file parsing, potentially leading to the disclosure of sensitive user information. Users are encouraged to update to Xcode 14.0 to mitigate this issue. For detailed information, refer to the Apple support page.

Affected Version(s)

Xcode < 14.0

References

https://support.apple.com/en-us/HT213883

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 6, 2023
Vulnerability Reserved
Jun 9, 2022