Sensitive Data Exposure in Apple Music for Android
CVE-2022-32836

7.5HIGH

Key Information:

Vendor: Apple
Status: Apple Music For Android
Vendor: CVE Published:; 27 February 2023

Summary

A vulnerability in Apple Music for Android could allow unauthorized access to sensitive user data due to inadequate state management. This issue has been addressed in version 3.9.10. Users are encouraged to update their applications to ensure their data remains secure.

Affected Version(s)

Apple Music for Android < 3.9

References

https://support.apple.com/en-us/HT213473

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 27, 2023
Vulnerability Reserved
Jun 9, 2022