KLA11127
Multiple vulnerabilities in Apple iTunes
Обновлено: 26/06/2019
Дата обнаружения
25/09/2017
Уровень угрозы
High
Описание

Multiple serious vulnerabilities have been found in Apple iTunes for Windows. These vulnerabilities have been found in WebKit component and can be exploited remotely to execute arbitrary code, perform cross-site scripting, bypass security restrictions and obtain sensitive information.

NB: Not every vulnerability already has CVSS rating, so cumulative CVSS rating can be not representative.

Пораженные продукты

Apple iTunes for Windows versions earlier than 12.7

Решение

Update to the latest version
Download iTunes

Первичный источник обнаружения
About the security content of iTunes 12.7 for Windows
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

XSS/CSS 
[?]

SUI 
[?]
Связанные продукты
Apple iTunes
CVE-IDS