CVE-2015-5910

low

Description

IDE Xcode Server in Apple Xcode before 7.0 does not ensure that server traffic is encrypted, which allows remote attackers to obtain sensitive information by sniffing the network.

References

http://lists.apple.com/archives/security-announce/2015/Sep/msg00002.html

https://support.apple.com/HT205217

http://www.securitytracker.com/id/1033596

Details

Published: 2015-09-18

Risk Information

CVSS v2

Base Score: 3.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

Detections

Analytics