KLA11127
Multiple vulnerabilities in Apple iTunes
Updated: 06/26/2019
Detect date
?
09/25/2017
Severity
?
High
Description

Multiple serious vulnerabilities have been found in Apple iTunes for Windows. These vulnerabilities have been found in WebKit component and can be exploited remotely to execute arbitrary code, perform cross-site scripting, bypass security restrictions and obtain sensitive information.

NB: Not every vulnerability already has CVSS rating, so cumulative CVSS rating can be not representative.

Affected products

Apple iTunes for Windows versions earlier than 12.7

Solution

Update to the latest version
Download iTunes

Original advisories

About the security content of iTunes 12.7 for Windows

Impacts
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

XSS/CSS 
[?]

SUI 
[?]
Related products
Apple iTunes
CVE-IDS
?