Description
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 11.3. Compiling with untrusted sources may lead to arbitrary code execution with user privileges.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210796
Scores
CVSS v3
8.8
EPSS
0.0098
EPSS Percentile
76.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-125
Status
published
Products (1)
apple/xcode
< 11.3
Published
Oct 27, 2020
Tracked Since
Feb 18, 2026