Xcode Security Vulnerabilities and Issues — Xcode CVE List

Lucene search

AppleXcode

5 matches found

CVE•added 2018/11/07 2:29 p.m.•5170 views

CVE-2018-16843

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen' directive is used in a configura...

7.8CVSS7.3AI score0.55936EPSS

CVE•added 2018/11/07 2:29 p.m.•5073 views

CVE-2018-16844

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen' directive is used in a configuration file...

7.8CVSS7.3AI score0.11067EPSS

CVE•added 2018/11/07 2:29 p.m.•4429 views

CVE-2018-16845

nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affe...

8.2CVSS6.4AI score0.04539EPSS

CVE•added 2018/04/03 6:29 a.m.•79 views

CVE-2018-4164

An issue was discovered in certain Apple products. Xcode before 9.3 is affected. The issue, which is unspecified, involves the "LLVM" component.

10CVSS8.1AI score0.0305EPSS

CVE•added 2018/04/03 6:29 a.m.•41 views

CVE-2017-7167

An issue was discovered in certain Apple products. Xcode before 9.2 is affected. The issue involves the "ld64" component. A buffer overflow allows remote attackers to execute arbitrary code via crafted source code.

7.8CVSS7.5AI score0.01112EPSS