Vulnerabilities > Apple > Itunes > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-03-05 CVE-2019-6229 Cross-site Scripting vulnerability in Apple products
A logic issue was addressed with improved validation.
network
low complexity
apple CWE-79
6.1
2019-01-11 CVE-2018-4278 In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin.
network
low complexity
apple canonical
4.3
2018-06-08 CVE-2018-4232 An issue was discovered in certain Apple products.
network
low complexity
apple canonical
4.3
2018-06-08 CVE-2018-4226 Information Exposure vulnerability in Apple products
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-200
5.5
2018-06-08 CVE-2018-4225 Improper Input Validation vulnerability in Apple products
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-20
5.5
2018-06-08 CVE-2018-4224 Information Exposure vulnerability in Apple products
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-200
5.5
2018-06-08 CVE-2018-4188 Improper Input Validation vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-20
6.5
2018-04-03 CVE-2018-4146 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical webkitgtk CWE-119
6.5
2018-04-03 CVE-2018-4117 Information Exposure vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical redhat debian CWE-200
6.5
2018-04-03 CVE-2018-4113 Reachable Assertion vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical CWE-617
6.5