Apple · Xcode · CVE-2021-1800
Name of the Vulnerable Software and Affected Versions:
Xcode versions prior to 12.4
Description:
A path handling issue was addressed with improved validation, which could allow a malicious application to access arbitrary files on the host device while running an app that uses on-demand resources with Xcode.
Recommendations:
For versions prior to 12.4, update to Xcode 12.4 to resolve the issue. As a temporary workaround, consider restricting the use of on-demand resources until the update is applied.