Multiple vulnerabilities in Apple iTunes

Описание

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

1. Integer overflow vulnerability in ImageIO can be exploited to cause execute arbitrary code and denial of service.
2. An elevation of privilege vulnerability in Mobile Device Service can be exploited to gain privileges.
3. Use-after-free vulnerability in Webkit can be exploited to execute arbitrary code.
4. An elevation of privilege vulnerability in iTunes can be exploited to gain privileges.
5. Input validation vulnerability in AppleGraphicsControl can be exploited to execute arbitrary code.

Первичный источник обнаружения

• About the security content of iTunes 12.12.4 for Windows
  

Связанные продукты

• Apple-iTunes

Список CVE

• CVE-2022-26711
  critical
• CVE-2022-26773
  high
• CVE-2022-26717
  warning
• CVE-2022-26774
  warning
• CVE-2022-26751
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com