First published: Tue May 23 2023(Updated: )
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be able to elevate privileges.
Credit: Zeeshan Shaikh – Synopsys Cybersecurity Research Center (CyRC) @bugzzzhunter product-security@apple.com product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iTunes for Windows | <12.12.9 | 12.12.9 |
Apple Itunes Windows | <12.12.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID is CVE-2023-32353.
The severity of CVE-2023-32353 is high (CVSS score: 7.8).
iTunes 12.12.9 for Windows and Apple macOS Monterey are affected by CVE-2023-32353.
The vulnerability can be fixed by updating to iTunes 12.12.9 for Windows or Apple macOS Monterey.
Yes, you can find additional information at the following link: [Apple Support - HT213763](https://support.apple.com/en-us/HT213763).