Itunes Security Vulnerabilities and Issues — Page 2 of Itunes CVE List

Lucene search

AppleItunes

922 matches found

CVE•added 2020/06/09 5:15 p.m.•247 views

CVE-2020-9807

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to ar...

8.8CVSS9.1AI score0.00309EPSS

CVE•added 2020/10/16 5:15 p.m.•247 views

CVE-2020-9862

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web Inspe...

7.8CVSS8AI score0.00253EPSS

CVE•added 2020/04/14 11:15 p.m.•246 views

CVE-2020-11761

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp.

5.5CVSS5.5AI score0.00363EPSS

CVE•added 2019/12/18 6:15 p.m.•244 views

CVE-2019-8666

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitr...

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•244 views

CVE-2019-8671

8.8CVSS8.5AI score0.28154EPSS

CVE•added 2019/12/18 6:15 p.m.•243 views

CVE-2019-8782

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.6AI score0.00272EPSS

CVE•added 2019/12/18 6:15 p.m.•243 views

CVE-2019-8814

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary c...

9.3CVSS8.6AI score0.00704EPSS

CVE•added 2019/12/18 6:15 p.m.•242 views

CVE-2019-8544

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

9.3CVSS8.8AI score0.01683EPSS

CVE•added 2019/12/18 6:15 p.m.•242 views

CVE-2019-8625

A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.

6.1CVSS6.3AI score0.0023EPSS

CVE•added 2019/12/18 6:15 p.m.•242 views

CVE-2019-8686

8.8CVSS8.6AI score0.00816EPSS

CVE•added 2020/04/14 11:15 p.m.•242 views

CVE-2020-11758

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h.

5.5CVSS5.5AI score0.0035EPSS

CVE•added 2019/12/18 6:15 p.m.•240 views

CVE-2019-8677

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•240 views

CVE-2019-8813

A logic issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to universal cross site scripting.

6.1CVSS6.1AI score0.00336EPSS

CVE•added 2020/04/14 11:15 p.m.•240 views

CVE-2020-11760

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp.

5.5CVSS5.5AI score0.00388EPSS

CVE•added 2019/12/18 6:15 p.m.•238 views

CVE-2019-8558

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS9AI score0.15256EPSS

CVE•added 2020/04/14 11:15 p.m.•238 views

CVE-2020-11765

An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read.

5.5CVSS5.4AI score0.0035EPSS

CVE•added 2020/10/16 5:15 p.m.•237 views

CVE-2020-9893

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected applicati...

8.8CVSS9AI score0.004EPSS

CVE•added 2020/04/14 11:15 p.m.•236 views

CVE-2020-11762

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case.

5.5CVSS5.5AI score0.0039EPSS

CVE•added 2022/05/26 7:15 p.m.•236 views

CVE-2022-26711

An integer overflow issue was addressed with improved input validation. This issue is fixed in tvOS 15.5, iTunes 12.12.4 for Windows, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

9.8CVSS8.9AI score0.01615EPSS

CVE•added 2019/12/18 6:15 p.m.•235 views

CVE-2019-8681

8.8CVSS8.6AI score0.00816EPSS

CVE•added 2020/10/27 9:15 p.m.•235 views

CVE-2020-3864

A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 13.3.1. A DOM object context may not have had a unique security origin.

7.8CVSS7.3AI score0.00053EPSS

CVE•added 2019/12/18 6:15 p.m.•234 views

CVE-2019-8676

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may l...

9.3CVSS8.6AI score0.03566EPSS

CVE•added 2019/12/18 6:15 p.m.•233 views

CVE-2019-8689

9.3CVSS8.6AI score0.29403EPSS

CVE•added 2019/12/18 6:15 p.m.•233 views

CVE-2019-8808

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.6AI score0.00272EPSS

CVE•added 2019/12/18 6:15 p.m.•233 views

CVE-2019-8823

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary c...

8.8CVSS8.6AI score0.00493EPSS

CVE•added 2019/12/18 6:15 p.m.•232 views

CVE-2019-8673

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•232 views

CVE-2019-8726

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.4AI score0.01106EPSS

CVE•added 2019/12/18 6:15 p.m.•231 views

CVE-2019-8559

8.8CVSS9AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•228 views

CVE-2019-8735

8.8CVSS8.4AI score0.01106EPSS

CVE•added 2019/12/18 6:15 p.m.•226 views

CVE-2019-8551

A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to universal cross site scripting.

6.1CVSS6.1AI score0.00861EPSS

CVE•added 2019/12/18 6:15 p.m.•226 views

CVE-2019-8611

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.5AI score0.28043EPSS

CVE•added 2019/12/18 6:15 p.m.•226 views

CVE-2019-8679

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•225 views

CVE-2019-8518

9.3CVSS8.9AI score0.43946EPSS

CVE•added 2019/12/18 6:15 p.m.•225 views

CVE-2019-8563

8.8CVSS9AI score0.00816EPSS

CVE•added 2020/02/27 9:15 p.m.•224 views

CVE-2020-3862

A denial of service issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. A malicious website may be able to cause a denial of service.

6.5CVSS6.3AI score0.00183EPSS

CVE•added 2019/12/18 6:15 p.m.•223 views

CVE-2019-8535

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

9.3CVSS8.8AI score0.02231EPSS

CVE•added 2018/06/08 6:29 p.m.•219 views

CVE-2018-4200

An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attacker...

8.8CVSS8.7AI score0.45532EPSS

CVE•added 2019/12/18 6:15 p.m.•219 views

CVE-2019-8536

9.3CVSS8.8AI score0.01589EPSS

CVE•added 2019/12/18 6:15 p.m.•219 views

CVE-2019-8683

8.8CVSS8.5AI score0.00825EPSS

CVE•added 2019/12/18 6:15 p.m.•217 views

CVE-2019-8524

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS9AI score0.00838EPSS

CVE•added 2019/12/18 6:15 p.m.•217 views

CVE-2019-8644

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•217 views

CVE-2019-8688

9.3CVSS8.6AI score0.04267EPSS

CVE•added 2019/12/18 6:15 p.m.•215 views

CVE-2019-8669

9.3CVSS8.5AI score0.03566EPSS

CVE•added 2019/12/18 6:15 p.m.•215 views

CVE-2019-8684

9.3CVSS8.6AI score0.03566EPSS

CVE•added 2019/12/18 6:15 p.m.•214 views

CVE-2019-8584

8.8CVSS8.5AI score0.00811EPSS

CVE•added 2019/12/18 6:15 p.m.•214 views

CVE-2019-8595

8.8CVSS8.6AI score0.00811EPSS

CVE•added 2019/12/18 6:15 p.m.•214 views

CVE-2019-8615

6.5CVSS7.9AI score0.00728EPSS

CVE•added 2019/12/18 6:15 p.m.•213 views

CVE-2019-8601

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code e...

8.8CVSS8.5AI score0.09556EPSS

CVE•added 2019/12/18 6:15 p.m.•213 views

CVE-2019-8680

8.8CVSS8.5AI score0.00816EPSS

CVE•added 2019/12/18 6:15 p.m.•212 views

CVE-2019-8763

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary cod...

8.8CVSS8.5AI score0.01106EPSS

Total number of security vulnerabilities922