Itunes Security Vulnerabilities and Issues — Page 19 of Itunes CVE List

Lucene search

AppleItunes

922 matches found

CVE•added 2012/09/13 10:30 a.m.•40 views

CVE-2012-3607

WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-09-12-1.

9.3CVSS7.8AI score0.01247EPSS

CVE•added 2012/09/13 10:30 a.m.•40 views

CVE-2012-3651

6.8CVSS7.8AI score0.01106EPSS

CVE•added 2012/09/13 10:30 a.m.•40 views

CVE-2012-3685

6.8CVSS7.8AI score0.01555EPSS

CVE•added 2012/09/13 10:30 a.m.•40 views

CVE-2012-3706

6.8CVSS7.8AI score0.00952EPSS

CVE•added 2019/04/03 6:29 p.m.•40 views

CVE-2018-4439

A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

6.5CVSS6.6AI score0.00344EPSS

CVE•added 2020/10/27 8:15 p.m.•40 views

CVE-2018-4444

A logic issue was addressed with improved state management. This issue is fixed in Safari 12.0.2, iOS 12.1.1, tvOS 12.1.1, iTunes 12.9.2 for Windows. Processing maliciously crafted web content may disclose sensitive user information.

6.5CVSS6.3AI score0.00457EPSS

CVE•added 2011/03/03 8:0 p.m.•39 views

CVE-2011-0134

WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011...

7.6CVSS9.2AI score0.00937EPSS

CVE•added 2011/03/03 8:0 p.m.•39 views

CVE-2011-0147

7.6CVSS9.2AI score0.00937EPSS

CVE•added 2011/03/03 8:0 p.m.•39 views

CVE-2011-0154

WebKit, as used in Apple iTunes before 10.2 on Windows and Apple iOS, does not properly implement the .sort function for JavaScript arrays, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related t...

5.1CVSS9.2AI score0.00753EPSS

CVE•added 2011/03/03 8:0 p.m.•39 views

CVE-2011-0165

7.6CVSS9.2AI score0.00861EPSS

CVE•added 2012/03/08 10:55 p.m.•39 views

CVE-2012-0607

WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE...

9.3CVSS7.8AI score0.01997EPSS

CVE•added 2012/03/08 10:55 p.m.•39 views

CVE-2012-0639

WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.

7.6CVSS7.5AI score0.01166EPSS

CVE•added 2012/09/13 10:30 a.m.•39 views

CVE-2012-3712

6.8CVSS7.8AI score0.01555EPSS

CVE•added 2013/12/18 4:4 p.m.•39 views

CVE-2013-5198

WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1.

6.8CVSS7.8AI score0.02121EPSS

CVE•added 2005/11/18 11:0 a.m.•38 views

CVE-2005-2938

Unquoted Windows search path vulnerability in iTunesHelper.exe in iTunes 4.7.1.30 and iTunes 5 for Windows might allow local users to gain privileges via a malicious C:\program.exe file.

7.2CVSS6.5AI score0.00058EPSS

CVE•added 2011/03/03 8:0 p.m.•38 views

CVE-2011-0123

7.6CVSS9.2AI score0.00937EPSS

CVE•added 2012/03/08 10:55 p.m.•38 views

CVE-2011-2869

9.3CVSS7.8AI score0.01849EPSS

CVE•added 2012/03/08 10:55 p.m.•38 views

CVE-2012-0614

9.3CVSS7.8AI score0.01837EPSS

CVE•added 2012/09/13 10:30 a.m.•38 views

CVE-2012-3659