CVE-2024-40862

CVE Database · CVE-2024-40862

CVE-2024-40862

· MEDIUMModified

CVSS v3.1

5.3

EPSS

0.47%

Published

Sep 16, 2024

Modified

Nov 4, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-200

Affected Products (1)

apple · xcode (up to 16.0)vulnerable

References (2)

https://support.apple.com/en-us/121239

Vendor Advisory

http://seclists.org/fulldisclosure/2024/Sep/38

KEV Catalog EPSS Scores Vendors All CVEs