Apple Itunes vulnerabilities
953 known vulnerabilities affecting apple/itunes.
Total CVEs
953
CISA KEV
2
actively exploited
Public exploits
77
Exploited in wild
3
Severity breakdown
CRITICAL114HIGH486MEDIUM348LOW5
Vulnerabilities
Page 38 of 48
CVE-2012-0618CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0618 [CRITICAL] CWE-119 CVE-2012-0618: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0615CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0615 [CRITICAL] CWE-119 CVE-2012-0615: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0630CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0630 [CRITICAL] CWE-119 CVE-2012-0630: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0610CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0610 [CRITICAL] CWE-119 CVE-2012-0610: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2833CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2011-2833 [CRITICAL] CWE-119 CVE-2011-2833: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2869CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2011-2869 [CRITICAL] CWE-119 CVE-2011-2869: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0594CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0594 [CRITICAL] CWE-119 CVE-2012-0594: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0607CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0607 [CRITICAL] CWE-119 CVE-2012-0607: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2867CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2011-2867 [CRITICAL] CWE-119 CVE-2011-2867: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0620CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0620 [CRITICAL] CWE-119 CVE-2012-0620: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0632CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0632 [CRITICAL] CWE-119 CVE-2012-0632: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0621CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0621 [CRITICAL] CWE-119 CVE-2012-0621: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0592CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0592 [CRITICAL] CWE-119 CVE-2012-0592: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0593CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0593 [CRITICAL] CWE-119 CVE-2012-0593: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0601CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0601 [CRITICAL] CWE-119 CVE-2012-0601: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0598CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0598 [CRITICAL] CWE-119 CVE-2012-0598: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2871CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2011-2871 [CRITICAL] CWE-119 CVE-2011-2871: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0599CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0599 [CRITICAL] CWE-119 CVE-2012-0599: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0624CRITICALCVSS 9.3fixed in 10.62012-03-08
CVE-2012-0624 [CRITICAL] CWE-119 CVE-2012-0624: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0636HIGHCVSS 7.6≤ 10.5.3v4.0.0+60 more2012-03-08
CVE-2012-0636 [HIGH] CWE-119 CVE-2012-0636: WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary
WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.
nvd