CVE-2012-3698
Published Jul 26, 2012
Last updated 12 years ago
Overview
- Description
- Apple Xcode before 4.4 does not properly compose a designated requirement (DR) during signing of programs that lack bundle identifiers, which allows remote attackers to read keychain entries via a crafted app, as demonstrated by the keychain entries of a (1) helper tool or (2) command-line tool.
- Source
- product-security@apple.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2873B5DF-A38C-43A8-A834-50863DA78AAB",
"versionEndIncluding": "4.3.3"
},
{
"criteria": "cpe:2.3:a:apple:xcode:1.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E282DAB-654C-4D41-B381-7E371FE05468"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9191616D-46D6-4108-82CD-4A477BDBF3F4"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17822329-EB9B-41CF-A130-87853C626DAB"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78B6EB7F-DBD9-4308-9A09-7D7EE61C6A58"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5050B071-9EDF-4F86-AB62-0D0A7B790078"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CDA08472-146E-40BC-86C3-DF82717C2130"
},
{
"criteria": "cpe:2.3:a:apple:xcode:2.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0887981B-36B9-464A-A18C-BE2959B5687E"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4835D49-2BEF-4C61-8795-0996C2561F99"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCF2A61B-0FEA-4EA8-9C34-59E94E69C5CE"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A797759-387D-45B0-B93E-3B5959E45B65"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "927038FE-0C71-4F6A-AB2A-A94BE056D27D"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09656EEE-89E3-408C-9548-71F565F8AC85"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2559A92-4498-4CD6-803E-51B92529256E"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54377E84-0C0F-4903-835C-61B526EDB58A"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6F23EEE-AA51-48B0-A61E-7231BD91F041"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1B34DB8-46C7-4AEF-B49B-45762D7D590D"
},
{
"criteria": "cpe:2.3:a:apple:xcode:3.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B9DA32AC-5B6D-45F6-A5DF-4F97F30CD4D6"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F8C893E-2C93-43C9-9330-D35BDB340832"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5FE7FE00-92DB-4B03-8CE2-3AD40B573E9F"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0675CBEA-0D0C-4FA1-9D41-6B4D04BE947C"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AAC8C0C9-4F93-4885-8C61-260DCEB1593C"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7531C6A0-F17B-461A-86CA-9492134293FC"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B839D894-05A0-4970-86B6-B9FB14EAD2A1"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F1EB068-D24A-46A6-9946-A932D023F400"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5167611C-A63B-4474-96BB-F2C34B4F039D"
},
{
"criteria": "cpe:2.3:a:apple:xcode:4.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "110FB551-C6C2-40E5-B9C2-0DC6CFF2DE0C"
}
],
"operator": "OR"
}
]
}
]