Vulnerabilities > Apple > Itunes > 12.9.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-18 | CVE-2019-8523 | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 9.3 |
| 2019-12-18 | CVE-2019-8518 | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 9.3 |
| 2019-12-18 | CVE-2019-8515 | Information Exposure vulnerability in Apple products A cross-origin issue existed with the fetch API. | 4.3 |
| 2019-12-18 | CVE-2019-8506 | Type Confusion vulnerability in multiple products A type confusion issue was addressed with improved memory handling. | 9.3 |
| 2019-12-18 | CVE-2019-8503 | Improper Input Validation vulnerability in Apple products A logic issue was addressed with improved validation. | 9.3 |
| 2019-12-18 | CVE-2019-7292 | Improper Input Validation vulnerability in Apple products A validation issue was addressed with improved logic. | 4.3 |
| 2019-12-18 | CVE-2019-7285 | Use After Free vulnerability in Apple products A use after free issue was addressed with improved memory management. | 9.3 |
| 2019-12-18 | CVE-2019-6237 | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 6.8 |
| 2019-12-18 | CVE-2019-6201 | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 9.3 |
| 2019-07-01 | CVE-2019-13118 | Type Confusion vulnerability in multiple products In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data. | 5.3 |