Browse all 10 CVE security advisories affecting Swift Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Swift Project is Apple's programming language for developing iOS, macOS, watchOS, and tvOS applications. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and memory management issues. The project has recorded 10 CVEs to date, with notable incidents including buffer overflow flaws in standard library components and insecure deserialization in Swift Package Manager. Security researchers have identified memory corruption risks in compiler optimizations and sandbox escape vulnerabilities in older versions, though Apple has addressed most through timely patches. The language's type safety features have reduced certain classes of vulnerabilities compared to Objective-C, but memory-related issues remain a persistent concern.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-0343 | SwiftASN1 安全漏洞 — Swift ASN1 | 5.9 | - | 2025-01-15 |
| CVE-2022-3918 | swift-corelibs-foundation 注入漏洞 — Swift Foundation | 7.1 | - | 2023-01-20 |
| CVE-2023-0040 | Async 注入漏洞 — Async HTTP ClientCWE-93 | 7.5 | - | 2023-01-18 |
| CVE-2022-3215 | swift-nio-http2 注入漏洞 — SwiftNIOCWE-113 | 5.3 | - | 2022-09-28 |
| CVE-2022-3252 | Apple SwiftNIO Extras 安全漏洞 — SwiftNIO ExtrasCWE-606 | 7.5 | - | 2022-09-21 |
| CVE-2022-1642 | Apple Swift 代码问题漏洞 — Swift Corelib-FoundationCWE-241 | 7.5 | - | 2022-06-16 |
| CVE-2022-0618 | swift-nio-http2 安全漏洞 — SwiftNIO HTTP2CWE-130 | 7.5 | - | 2022-03-09 |
| CVE-2022-24668 | swift-nio-http2 安全漏洞 — SwiftNIO HTTP2CWE-241 | 7.5 | - | 2022-02-09 |
| CVE-2022-24667 | swift-nio-http2 输入验证错误漏洞 — SwiftNIO HTTP2CWE-190 | 7.5 | - | 2022-02-09 |
| CVE-2022-24666 | swift-nio-http2 安全漏洞 — SwiftNIO HTTP2CWE-130 | 7.5 | - | 2022-02-09 |
This page lists every published CVE security advisory associated with Swift Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.