Lucene search
HistoryApr 26, 2024 - 8:15 p.m.
CVE-2022-48611
logic issue
itunes
windows
local attacker
privileges
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
9.0%
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for Windows. A local attacker may be able to elevate their privileges.
Related
vulnrichment
vulnrichment
CVE-2022-48611
2024-04-26 19:40:16
cvelist
cvelist
CVE-2022-48611
2024-04-26 19:40:16
cve
cve
CVE-2022-48611
2024-04-26 20:15:07
nessus
nessus
Apple iTunes < 12.12.4 Multiple Vulnerabilities (uncredentialed check)
2022-05-19 00:00:00
Apple iTunes < 12.12.4 Multiple Vulnerabilities (credentialed check)
2022-05-19 00:00:00
apple
apple
About the security content of iTunes 12.12.4 for Windows
2022-05-18 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2022-48611