Primary

Context

Apple Xcode Simulator Permissions Vulnerability Allowing Arbitrary File Read as Root

Vulnerability

Patched

A permissions vulnerability in the Xcode Simulator component allows apps to read arbitrary files as root. This issue was addressed in Xcode 26.4, released on March 24, 2026.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files, potentially allowing for further exploitation or information disclosure.

Remediation

Users can update to Xcode 26.4 to address this vulnerability.

Added: Mar 25, 2026, 1:28 AM

Updated: Mar 25, 2026, 1:28 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

3.3

remediation

7.7

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Xcode Simulator Permissions Vulnerability Allowing Arbitrary File Read as Root

Vulnerability

Impact

Remediation

Affected Products

Apple Xcode

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating