Apple Xcode 15.3

CPE Details

Apple Xcode 15.3
apple
xcode
15.3
2025-02-13
14h06 +00:00
2025-02-13
14h06 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:apple:xcode:15.3:*:*:*:*:*:*:*

Informations

Vendor

apple

Product

xcode

Version

15.3

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2025-30441 2025-03-31 22h23 +00:00 This issue was addressed through improved state management. This issue is fixed in Xcode 16.3. An app may be able to overwrite arbitrary files.
5.5
Moyen
CVE-2025-24226 2025-03-31 22h23 +00:00 The issue was addressed with improved checks. This issue is fixed in Xcode 16.3. A malicious app may be able to access private information.
5.5
Moyen
CVE-2024-44228 2024-10-28 21h08 +00:00 This issue was addressed with improved permissions checking. This issue is fixed in Xcode 16. An app may be able to inherit Xcode permissions and access user data.
7.5
Haute
CVE-2024-44191 2024-09-16 23h23 +00:00 This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and iPadOS 17.7, Xcode 16, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. An app may gain unauthorized access to Bluetooth.
5.5
Moyen
CVE-2024-40862 2024-09-16 23h23 +00:00 A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer.
7.5
Haute
CVE-2024-44162 2024-09-16 23h23 +00:00 This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items.
7.8
Haute
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.