CVE-2015-7057Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Xcode

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 79.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Xcode
Timeline
PublishedDec 11
Latest updateMay 17

Description

otools in Apple Xcode before 7.2 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted mach-o file, a different vulnerability than CVE-2015-7049.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDapple/xcode7.1.1

🔴Vulnerability Details

2
GHSA
GHSA-2jgg-8h3c-p8g3: otools in Apple Xcode before 72022-05-17
CVEList
CVE-2015-7057: otools in Apple Xcode before 72015-12-11

📋Vendor Advisories

1
Apple
CVE-2015-7057: Xcode 7.2
CVE-2015-7057 — Apple Xcode vulnerability | cvebase