Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Apple Subscribe
Filtered by product Music
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-46841 1 Apple 1 Music 2023-03-09 N/A 5.9 MEDIUM
This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.5.0 for Android. An attacker in a privileged network position can track a user's activity.
CVE-2022-32906 1 Apple 1 Music 2023-03-09 N/A 5.3 MEDIUM
This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections.
CVE-2022-32846 1 Apple 1 Music 2023-03-08 N/A 7.5 HIGH
A logic issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.
CVE-2022-32836 1 Apple 1 Music 2023-03-07 N/A 7.5 HIGH
This issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.
CVE-2020-9982 1 Apple 1 Music 2021-07-21 4.3 MEDIUM 5.5 MEDIUM
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials.