Kaspersky Threats — La page que vous recherchez est introuvable.<br>Mais vous pouvez consulter les descriptions de nos dernières vulnérabilités et menaces.

Description

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

A code execution vulnerability in ImageIO can be exploited via special crafted image to execute arbitrary code.
A memory corruption vulnerability in WebKit can be exploited via special crafted web content to execute arbitrary code.
A type confusion vulnerability in Foundation can be exploited via special crafted webpage to execute arbitrary code.
A memory corruption vulnerability in ImageIO can be exploited via special crafted image to execute arbitrary code.
A remote code execution vulnerability in CoreGraphics can be exploited remotely to execute arbitrary code.
A security bypass vulnerability in WebKit can be exploited to bypass security restrictions.

Fiches de renseignement originales

About the security content of iTunes 12.12 for Windows

Exploitation

Public exploits exist for this vulnerability.

Produits associés

Apple-iTunes

Liste CVE

CVE-2021-30835
critical
CVE-2021-30849
critical
CVE-2021-30847
critical
CVE-2021-30814
critical
CVE-2021-30823
high
CVE-2021-30852
critical
CVE-2021-30928
critical

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com

Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !