CVE-2019-6232
published 2019-12-18CVE-2019-6232: A race condition existed during the installation of iTunes for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for…
high7.5CVSS 3.1
AVNACHPRNUIRSUCHIHAH
A race condition existed during the installation of iTunes for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for Windows 7.11. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | icloud | < 7.11 | 7.11 |
| apple | icloud_for_windows | — | — |
| apple | icloud_for_windows | >= unspecified < iCloud for Windows 7.11 | iCloud for Windows 7.11 |
| kde | kconfig | >= 0 < 5.18.0-0ubuntu1.1 | 5.18.0-0ubuntu1.1 |
| kde | kconfig | >= 0 < 5.44.0-0ubuntu1.1 | 5.44.0-0ubuntu1.1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.5HIGH