Credential Leakage in Apple Music Classical for Android
CVE-2025-43201

6.2MEDIUM

Key Information:

Vendor: Apple
Status: Apple Music Classical For Android
Vendor: CVE Published:; 15 August 2025

What is CVE-2025-43201?

A vulnerability has been identified in Apple Music Classical for Android that could potentially allow the app to leak user credentials unexpectedly. Users may be at risk of exposing sensitive information without their consent. This vulnerability has been addressed with improved checks in the latest version, enhancing the overall security posture of the application. It's essential for users to update to the latest version to safeguard their personal data.

Affected Version(s)

Apple Music Classical for Android < 2.3

References

https://support.apple.com/en-us/124156

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 15, 2025
Vulnerability Reserved
Apr 16, 2025