PT-2019-19170 · Apple · Xcode
Pan Zhenpeng
·
Publicado
2019-12-18
·
Atualizado
2019-12-22
·
CVE-2019-8724
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Xcode versions prior to 11.0
Description
The issue arises from multiple problems in ld64 within the Xcode toolchains, which could be exploited to achieve arbitrary code execution with user privileges due to insufficient input validation during code compilation.
Recommendations
For versions prior to 11.0, update to Xcode 11.0 to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Xcode