Apple Itunes vulnerabilities
953 known vulnerabilities affecting apple/itunes.
Total CVEs
953
CISA KEV
2
actively exploited
Public exploits
77
Exploited in wild
3
Severity breakdown
CRITICAL113HIGH487MEDIUM348LOW5
Vulnerabilities
Page 22 of 48
CVE-2017-2383LOWCVSS 3.1≤ 12.5.5.52017-04-02
CVE-2017-2383 [LOW] CVE-2017-2383: An issue was discovered in certain Apple products. iCloud before 6.2 on Windows is affected. iTunes
An issue was discovered in certain Apple products. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. The issue involves cleartext client-certificate transmission in the "APNs Server" component. It allows man-in-the-middle attackers to track users via correlation with this certificate.
nvd
CVE-2016-0718CRITICALCVSS 9.8v12.62017-03-21
CVE-2016-0718 [CRITICAL] CVE-2016-0718: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2016-0718
Component: CVE-2016-0718
apple
CVE-2015-3717HIGHCVSS 7.5v12.62017-03-21
CVE-2015-3717 [HIGH] CVE-2015-3717: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-3717
Component: CVE-2015-3717
apple
CVE-2015-3414HIGHCVSS 7.5v12.62017-03-21
CVE-2015-3414 [HIGH] CVE-2015-3414: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-3414
Component: CVE-2015-3414
apple
CVE-2015-3416HIGHCVSS 7.5v12.62017-03-21
CVE-2015-3416 [HIGH] CVE-2015-3416: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-3416
Component: CVE-2015-3416
apple
CVE-2016-5300HIGHCVSS 7.5v12.62017-03-21
CVE-2016-5300 [HIGH] CVE-2016-5300: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2016-5300
Component: CVE-2016-5300
apple
CVE-2015-3415HIGHCVSS 7.5v12.62017-03-21
CVE-2015-3415 [HIGH] CVE-2015-3415: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-3415
Component: CVE-2015-3415
apple
CVE-2016-4472HIGHCVSS 8.1v12.62017-03-21
CVE-2016-4472 [HIGH] CVE-2016-4472: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2016-4472
Component: CVE-2016-4472
apple
CVE-2012-6702MEDIUMCVSS 5.9v12.62017-03-21
CVE-2012-6702 [MEDIUM] CVE-2012-6702: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2012-6702
Component: CVE-2012-6702
apple
CVE-2009-3560MEDIUMCVSS 5.0v12.62017-03-21
CVE-2009-3560 [MEDIUM] CVE-2009-3560: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2009-3560
Component: CVE-2009-3560
apple
CVE-2013-7443MEDIUMCVSS 5.0v12.62017-03-21
CVE-2013-7443 [MEDIUM] CVE-2013-7443: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2013-7443
Component: CVE-2013-7443
apple
CVE-2009-3720MEDIUMCVSS 5.0v12.62017-03-21
CVE-2009-3720 [MEDIUM] CVE-2009-3720: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2009-3720
Component: CVE-2009-3720
apple
CVE-2016-6153MEDIUMCVSS 5.9v12.62017-03-21
CVE-2016-6153 [MEDIUM] CVE-2016-6153: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2016-6153
Component: CVE-2016-6153
Impact: Multiple issues in expat
Description: Multiple issues existed in expat. These issues were addressed by updating expat to version 2.2.0.
apple
CVE-2012-1148MEDIUMCVSS 5.0v12.62017-03-21
CVE-2012-1148 [MEDIUM] CVE-2012-1148: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2012-1148
Component: CVE-2012-1148
apple
CVE-2015-1283MEDIUMCVSS 6.8v12.62017-03-21
CVE-2015-1283 [MEDIUM] CVE-2015-1283: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-1283
Component: CVE-2015-1283
apple
CVE-2009-3270MEDIUMCVSS 5.0PoCv12.62017-03-21
CVE-2009-3270 [MEDIUM] CVE-2009-3270: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2009-3270
Component: CVE-2009-3270
apple
CVE-2012-1147MEDIUMCVSS 4.3v12.62017-03-21
CVE-2012-1147 [MEDIUM] CVE-2012-1147: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2012-1147
Component: CVE-2012-1147
apple
CVE-2015-6607MEDIUMCVSS 6.8v12.62017-03-21
CVE-2015-6607 [MEDIUM] CVE-2015-6607: iTunes 12.6
Apple Security Update: About the security content of iTunes 12.6
Product: iTunes
Version: 12.6
CVE: CVE-2015-6607
Component: CVE-2015-6607
apple
CVE-2016-7648HIGHCVSS 8.8≤ 12.5.32017-02-20
CVE-2016-7648 [HIGH] CWE-119 CVE-2016-7648: An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a cra
nvd
CVE-2016-7656HIGHCVSS 8.8≤ 12.5.32017-02-20
CVE-2016-7656 [HIGH] CWE-119 CVE-2016-7656: An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a cra
nvd