CVE Vulnerabilities

CVE-2024-54540

Published: Jan 15, 2025 | Modified: Mar 24, 2025
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5.0.152 for Windows. Processing maliciously crafted web content may disclose internal states of the app.

Affected Software

Name Vendor Start Version End Version
Music Apple * 1.5.0.152 (excluding)

References