Apple

Music

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-54540

  • EPSS 0.08%
  • Veröffentlicht 15.01.2025 20:15:28
  • Zuletzt bearbeitet 24.03.2025 18:15:20

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5.0.152 for Windows. Processing maliciously crafted web content may disclose internal states of the app.

5.5

CVE-2023-28203

  • EPSS 0.06%
  • Veröffentlicht 28.07.2023 05:15:10
  • Zuletzt bearbeitet 07.03.2025 21:15:16

The issue was addressed with improved checks. This issue is fixed in Apple Music 4.2.0 for Android. An app may be able to access contacts.

5.9

CVE-2023-32427

  • EPSS 0.11%
  • Veröffentlicht 28.07.2023 05:15:10
  • Zuletzt bearbeitet 21.11.2024 08:03:20

This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 4.2.0 for Android. An attacker in a privileged network position may be able to intercept network traffic.

5.3

CVE-2022-32906

  • EPSS 0.08%
  • Veröffentlicht 27.02.2023 20:15:12
  • Zuletzt bearbeitet 11.03.2025 18:15:25

This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections.

5.9

CVE-2021-46841

  • EPSS 0.13%
  • Veröffentlicht 27.02.2023 20:15:11
  • Zuletzt bearbeitet 11.03.2025 18:15:25

This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.5.0 for Android. An attacker in a privileged network position can track a user's activity.

7.5

CVE-2022-32836

  • EPSS 0.13%
  • Veröffentlicht 27.02.2023 20:15:11
  • Zuletzt bearbeitet 11.03.2025 17:15:40

This issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.

7.5

CVE-2022-32846

  • EPSS 0.15%
  • Veröffentlicht 27.02.2023 20:15:11
  • Zuletzt bearbeitet 11.03.2025 20:15:14

A logic issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.

5.5

CVE-2020-9982

  • EPSS 0.28%
  • Veröffentlicht 27.10.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:41:38

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials.