Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-46841 | 1 Apple | 1 Music | 2023-03-09 | N/A | 5.9 MEDIUM |
This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.5.0 for Android. An attacker in a privileged network position can track a user's activity. | |||||
CVE-2022-32906 | 1 Apple | 1 Music | 2023-03-09 | N/A | 5.3 MEDIUM |
This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections. | |||||
CVE-2022-32846 | 1 Apple | 1 Music | 2023-03-08 | N/A | 7.5 HIGH |
A logic issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data. | |||||
CVE-2022-32836 | 1 Apple | 1 Music | 2023-03-07 | N/A | 7.5 HIGH |
This issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data. | |||||
CVE-2020-9982 | 1 Apple | 1 Music | 2021-07-21 | 4.3 MEDIUM | 5.5 MEDIUM |
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials. |