Arbitrary code execution vulnerability in XCode in Apple Mac OS X or GitID: oval:org.secpod.oval:def:42141 | Date: (C)2017-09-21 (M)2023-03-28 |
Class: VULNERABILITY | Family: macos |
The host is installed with Xcode before 9.0 on Apple Mac OS X 10.12.6 or later or Git before 2.7.6, 2.8.x before 2.8.6, 2.9.x before 2.9.5, 2.10.x before 2.10.4, 2.11.x before 2.11.3, 2.12.x before 2.12.4, 2.13.x before 2.13.5, 2.14.x before 2.14.1 and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle An ssh:// URL scheme.Successful exploitation may lead to arbitrary code execution
Platform: |
Apple Mac OS X 10.11 |
Apple Mac OS X Server 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X Server 10.12 |
Apple Mac OS 11 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS X 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.15 |