CVE-2019-8840

HIGH

Xcode < 11.3 - Out-of-bounds Read

Title source: llm
STIX 2.1

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 11.3. Compiling with untrusted sources may lead to arbitrary code execution with user privileges.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210796

Scores

CVSS v3 8.8
EPSS 0.0127
EPSS Percentile 66.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-125
Status published
Products (1)
apple/xcode < 11.3
Published Oct 27, 2020
Tracked Since Feb 18, 2026