CVE-2017-7053Apple Itunes vulnerability

4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 60.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Itunes
Timeline
PublishedJul 20
Latest updateMay 13

Description

An issue was discovered in certain Apple products. iTunes before 12.6.2 on Windows is affected. The issue involves the "iTunes" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

NVDapple/itunes12.6.1

🔴Vulnerability Details

2
GHSA
GHSA-6jmj-9xm4-g77v: An issue was discovered in certain Apple products2022-05-13
CVEList
CVE-2017-7053: An issue was discovered in certain Apple products2017-07-20

📋Vendor Advisories

1
Apple
CVE-2017-7053: iTunes 12.6.2 for Windows2017-07-19
CVE-2017-7053 — Apple Itunes vulnerability | cvebase