CVE-2020-27895
published 2020-12-08CVE-2020-27895: An information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. This issue is fixed in…
low3.3CVSS 3.1
AVLACLPRNUIRSUCLINAN
An information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. This issue is fixed in iTunes 12.11 for Windows. A malicious application may be able to access local users Apple IDs.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | itunes | < 12.11 | 12.11 |
| apple | itunes_for_windows | >= unspecified < 12.11 | 12.11 |