Apple Xcode 15.3

CPE Details

Apple Xcode 15.3
apple
xcode
15.3
2025-02-13
14h06 +00:00
2025-02-13
14h06 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:apple:xcode:15.3:*:*:*:*:*:*:*

Informations

Vendor

apple

Product

xcode

Version

15.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-30441 2025-03-31 22h23 +00:00 This issue was addressed through improved state management. This issue is fixed in Xcode 16.3. An app may be able to overwrite arbitrary files.
5.5
Medium
CVE-2025-24226 2025-03-31 22h23 +00:00 The issue was addressed with improved checks. This issue is fixed in Xcode 16.3. A malicious app may be able to access private information.
5.5
Medium
CVE-2024-44228 2024-10-28 21h08 +00:00 This issue was addressed with improved permissions checking. This issue is fixed in Xcode 16. An app may be able to inherit Xcode permissions and access user data.
7.5
High
CVE-2024-44191 2024-09-16 23h23 +00:00 This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, Xcode 16, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. An app may gain unauthorized access to Bluetooth.
5.5
Medium
CVE-2024-40862 2024-09-16 23h23 +00:00 A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer.
7.5
High
CVE-2024-44162 2024-09-16 23h23 +00:00 This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items.
7.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.