Vulnerabilities > CVE-2024-54540 - Unspecified vulnerability in Apple Music

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

apple

NVD

Published: 2025-01-15

Updated: 2025-03-24

Summary

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5.0.152 for Windows. Processing maliciously crafted web content may disclose internal states of the app.

Vulnerable Configurations

Part	Description	Count
Application	Apple Apple Music *	1
OS	Microsoft Microsoft Windows 10 22H2 - Microsoft Windows 11 24H2 -	3

References

https://support.apple.com/en-us/122043