Apple Itunes vulnerabilities
922 known vulnerabilities affecting apple/itunes.
Total CVEs
922
CISA KEV
2
actively exploited
Public exploits
74
Exploited in wild
3
Severity breakdown
CRITICAL112HIGH479MEDIUM326LOW5
Vulnerabilities
Page 13 of 47
CVE-2018-4373HIGHCVSS 8.8fixed in 12.9.12019-04-03
CVE-2018-4373 [HIGH] CWE-119 CVE-2018-4373: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
nvd
CVE-2018-4375HIGHCVSS 8.8fixed in 12.9.12019-04-03
CVE-2018-4375 [HIGH] CWE-119 CVE-2018-4375: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
nvd
CVE-2018-4314HIGHCVSS 8.8PoCfixed in 12.92019-04-03
CVE-2018-4314 [HIGH] CWE-416 CVE-2018-4314: A use after free issue was addressed with improved memory management. This issue affected versions p
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4464HIGHCVSS 8.8fixed in 12.9.22019-04-03
CVE-2018-4464 [HIGH] CWE-119 CVE-2018-4464: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.
nvd
CVE-2018-4442HIGHCVSS 8.8PoCfixed in 12.9.22019-04-03
CVE-2018-4442 [HIGH] CWE-119 CVE-2018-4442: A memory corruption issue was addressed with improved memory handling. This issue affected versions
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.
nvd
CVE-2018-4412HIGHCVSS 7.8fixed in 12.92019-04-03
CVE-2018-4412 [HIGH] CWE-119 CVE-2018-4412: A memory corruption issue was addressed with improved input validation. This issue affected versions
A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4312HIGHCVSS 8.8PoCfixed in 12.92019-04-03
CVE-2018-4312 [HIGH] CWE-416 CVE-2018-4312: A use after free issue was addressed with improved memory management. This issue affected versions p
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4126HIGHCVSS 7.8fixed in 12.92019-04-03
CVE-2018-4126 [HIGH] CWE-119 CVE-2018-4126: A memory corruption issue was addressed with improved memory handling. This issue affected versions
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-20506HIGHCVSS 8.1≤ 12.9.32019-04-03
CVE-2018-20506 [HIGH] CVE-2018-20506: SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and result
SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use ca
nvd
CVE-2018-20505HIGHCVSS 7.5fixed in 12.9.32019-04-03
CVE-2018-20505 [HIGH] CWE-89 CVE-2018-20505: SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases).
nvd
CVE-2018-4318HIGHCVSS 8.8PoCfixed in 12.92019-04-03
CVE-2018-4318 [HIGH] CWE-416 CVE-2018-4318: A use after free issue was addressed with improved memory management. This issue affected versions p
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4414HIGHCVSS 7.8fixed in 12.92019-04-03
CVE-2018-4414 [HIGH] CWE-119 CVE-2018-4414: A memory corruption issue was addressed with improved input validation. This issue affected versions
A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4347HIGHCVSS 7.8fixed in 12.92019-04-03
CVE-2018-4347 [HIGH] CWE-416 CVE-2018-4347: A use after free issue was addressed with improved memory management. This issue affected versions p
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4386HIGHCVSS 8.8PoCfixed in 12.9.12019-04-03
CVE-2018-4386 [HIGH] CWE-119 CVE-2018-4386: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
nvd
CVE-2018-4372HIGHCVSS 8.8fixed in 12.9.12019-04-03
CVE-2018-4372 [HIGH] CWE-119 CVE-2018-4372: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.
nvd
CVE-2018-4265HIGHCVSS 8.8fixed in 12.82019-04-03
CVE-2018-4265 [HIGH] CWE-119 CVE-2018-4265: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
nvd
CVE-2018-4438HIGHCVSS 8.8PoCfixed in 12.9.22019-04-03
CVE-2018-4438 [HIGH] CWE-119 CVE-2018-4438: A logic issue existed resulting in memory corruption. This was addressed with improved state managem
A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.
nvd
CVE-2018-4299HIGHCVSS 8.8fixed in 12.92019-04-03
CVE-2018-4299 [HIGH] CWE-119 CVE-2018-4299: Multiple memory corruption issues were addressed with improved memory handling. This issue affected
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4361HIGHCVSS 8.8fixed in 12.92019-04-03
CVE-2018-4361 [HIGH] CVE-2018-4361: A memory consumption issue was addressed with improved memory handling. This issue affected versions
A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd
CVE-2018-4311HIGHCVSS 8.1fixed in 12.92019-04-03
CVE-2018-4311 [HIGH] CWE-200 CVE-2018-4311: The issue was addressed by removing origin information. This issue affected versions prior to iOS 12
The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
nvd