CVE-2024-44228

Published: Oct 28, 2024Modified: Mar 13, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

This issue was addressed with improved permissions checking. This issue is fixed in Xcode 16. An app may be able to inherit Xcode permissions and access user data.

Affected (1)

Products: Apple: Xcode

Apple

1 product

Xcode

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Xcode	Before 16.0

Related CWEs

CWE-276

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (1)

https://support.apple.com/en-us/121239

Source: product-security@apple.com

Vendor Advisory

Timeline

No history available yet.