Vulnerability Details CVE-2015-5909
IDE Xcode Server in Apple Xcode before 7.0 does not properly restrict access to repository e-mail lists, which allows remote attackers to obtain potentially sensitive build information in opportunistic circumstances by leveraging incorrect notification delivery.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.4%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2015-5909
-
cpe:2.3:a:apple:xcode:-
-
cpe:2.3:a:apple:xcode:1.5.0
-
cpe:2.3:a:apple:xcode:2.0.0
-
cpe:2.3:a:apple:xcode:2.1.0
-
cpe:2.3:a:apple:xcode:2.2.0
-
cpe:2.3:a:apple:xcode:2.3.0
-
cpe:2.3:a:apple:xcode:2.4.0
-
cpe:2.3:a:apple:xcode:2.4.1
-
cpe:2.3:a:apple:xcode:3.1
-
cpe:2.3:a:apple:xcode:3.1.1
-
cpe:2.3:a:apple:xcode:3.1.2
-
cpe:2.3:a:apple:xcode:3.1.3
-
cpe:2.3:a:apple:xcode:3.1.4
-
cpe:2.3:a:apple:xcode:3.2.1
-
cpe:2.3:a:apple:xcode:3.2.2
-
cpe:2.3:a:apple:xcode:3.2.3
-
cpe:2.3:a:apple:xcode:3.2.4
-
cpe:2.3:a:apple:xcode:3.2.5
-
cpe:2.3:a:apple:xcode:4.0
-
cpe:2.3:a:apple:xcode:4.0.1
-
cpe:2.3:a:apple:xcode:4.0.2
-
cpe:2.3:a:apple:xcode:4.1
-
cpe:2.3:a:apple:xcode:4.1.1
-
cpe:2.3:a:apple:xcode:4.2
-
cpe:2.3:a:apple:xcode:4.2.1
-
cpe:2.3:a:apple:xcode:4.3
-
cpe:2.3:a:apple:xcode:4.3.1
-
cpe:2.3:a:apple:xcode:4.3.2
-
cpe:2.3:a:apple:xcode:4.3.3
-
cpe:2.3:a:apple:xcode:4.4
-
cpe:2.3:a:apple:xcode:4.4.1
-
cpe:2.3:a:apple:xcode:4.5
-
cpe:2.3:a:apple:xcode:4.5.1
-
cpe:2.3:a:apple:xcode:4.5.2
-
cpe:2.3:a:apple:xcode:4.6
-
cpe:2.3:a:apple:xcode:4.6.1
-
cpe:2.3:a:apple:xcode:4.6.2
-
cpe:2.3:a:apple:xcode:4.6.3
-
cpe:2.3:a:apple:xcode:5.0
-
cpe:2.3:a:apple:xcode:5.0.1
-
cpe:2.3:a:apple:xcode:5.0.2
-
cpe:2.3:a:apple:xcode:5.1
-
cpe:2.3:a:apple:xcode:5.1.1
-
cpe:2.3:a:apple:xcode:6.0
-
cpe:2.3:a:apple:xcode:6.0.1
-
cpe:2.3:a:apple:xcode:6.1
-
cpe:2.3:a:apple:xcode:6.1.1
-
cpe:2.3:a:apple:xcode:6.2
-
cpe:2.3:a:apple:xcode:6.3
-
cpe:2.3:a:apple:xcode:6.3.1
-
cpe:2.3:a:apple:xcode:6.3.2
-
cpe:2.3:a:apple:xcode:6.4