CVE-2023-40435

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Oct 12, 2023

Summary

CVE-2023-40435 is a vulnerability affecting Xcode, identified as enabling hardened runtime to resolve it. This issue enables an app to potentially gain unauthorized access to App Store credentials. Prior to the fix in Xcode 15, this vulnerability posed a risk to users' confidential information associated with their App Store accounts. Developers are encouraged to update Xcode to ensure the security of their projects and users' data.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple Xcode

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWFCc7
https://www.cve.org/CVERecord?id=CVE-2023-40435
https://nvd.nist.gov/vuln/detail/CVE-2023-40435

Back to Vulnerability Database