The host is missing a security update according to the Apple advisory APPLE-SA-2021-01-26-4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle a validation issue. Successful exploitation allows an attacker to access arbitrary files on the host device while running an app that uses on-demand resources with Xcode.