Apple Itunes vulnerabilities

922 known vulnerabilities affecting apple/itunes.

Total CVEs

922

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL112HIGH479MEDIUM326LOW5

Vulnerabilities

Page 18 of 47

CVE-2018-4096HIGHCVSS 8.8fixed in 12.7.32018-04-03

CVE-2018-4096 [HIGH] CWE-119 CVE-2018-4096: An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13 An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. Safari before 11.0.3 is affected. iCloud before 7.3 on Windows is affected. iTunes before 12.7.3 on Windows is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "WebKit" component. It allows

nvd

CVE-2018-4101HIGHCVSS 8.8fixed in 12.7.42018-04-03

CVE-2018-4101 [HIGH] CWE-119 CVE-2018-4101: An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 i An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (

nvd

CVE-2018-4114HIGHCVSS 8.8fixed in 12.7.42018-04-03

CVE-2018-4114 [HIGH] CWE-119 CVE-2018-4114: An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 i An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary cod

nvd

CVE-2018-4113MEDIUMCVSS 6.5fixed in 12.7.42018-04-03

CVE-2018-4113 [MEDIUM] CWE-617 CVE-2018-4113: An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 i An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves a JavaScriptCore function in the "WebKit" component. It allows attackers

nvd

CVE-2018-4146MEDIUMCVSS 6.5fixed in 12.7.42018-04-03

CVE-2018-4146 [MEDIUM] CWE-119 CVE-2018-4146: An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 i An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows attackers to cause a denial of service

nvd

CVE-2017-7153MEDIUMCVSS 6.1fixed in 12.7.22018-04-03

CVE-2017-7153 [MEDIUM] CWE-601 CVE-2017-7153: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to spoof user-interf

nvd

CVE-2018-4117MEDIUMCVSS 6.5fixed in 12.7.42018-04-03

CVE-2018-4117 [MEDIUM] CWE-200 CVE-2018-4117: An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 i An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy an

nvd

CVE-2017-7157HIGHCVSS 8.8fixed in 12.7.22017-12-27

CVE-2017-7157 [HIGH] CWE-119 CVE-2017-7157: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service

nvd

CVE-2017-7156HIGHCVSS 8.8fixed in 12.7.22017-12-27

CVE-2017-7156 [HIGH] CWE-119 CVE-2017-7156: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service

nvd

CVE-2017-7160HIGHCVSS 8.8fixed in 12.7.22017-12-27

CVE-2017-7160 [HIGH] CWE-119 CVE-2017-7160: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service

nvd

CVE-2017-13856HIGHCVSS 8.8fixed in 12.7.22017-12-25

CVE-2017-13856 [HIGH] CWE-119 CVE-2017-13856: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13870HIGHCVSS 8.8fixed in 12.7.22017-12-25

CVE-2017-13870 [HIGH] CWE-119 CVE-2017-13870: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13866HIGHCVSS 8.8fixed in 12.7.22017-12-25

CVE-2017-13866 [HIGH] CWE-119 CVE-2017-13866: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13864MEDIUMCVSS 5.9fixed in 12.7.22017-12-25

CVE-2017-13864 [MEDIUM] CWE-200 CVE-2017-13864: An issue was discovered in certain Apple products. iCloud before 7.2 on Windows is affected. iTunes An issue was discovered in certain Apple products. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. The issue involves the "APNs Server" component. It allows man-in-the-middle attackers to track users by leveraging mishandling of client certificates.

nvd

CVE-2017-13788HIGHCVSS 8.8fixed in 12.7.12017-11-13

CVE-2017-13788 [HIGH] CWE-119 CVE-2017-13788: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13795HIGHCVSS 8.8PoCfixed in 12.7.12017-11-13

CVE-2017-13795 [HIGH] CWE-119 CVE-2017-13795: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13802HIGHCVSS 8.8PoCfixed in 12.7.12017-11-13

CVE-2017-13802 [HIGH] CWE-119 CVE-2017-13802: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13792HIGHCVSS 8.8PoCfixed in 12.7.12017-11-13

CVE-2017-13792 [HIGH] CWE-119 CVE-2017-13792: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13803HIGHCVSS 8.8fixed in 12.7.12017-11-13

CVE-2017-13803 [HIGH] CWE-119 CVE-2017-13803: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

CVE-2017-13793HIGHCVSS 8.8fixed in 12.7.12017-11-13

CVE-2017-13793 [HIGH] CWE-119 CVE-2017-13793: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi

nvd

← Previous18 / 47Next →