Skip to main content

Apple Music

1 CVEs product

Monthly

CVE-2017-2387 MEDIUM This Month

The Apple Music (aka com.apple.android.music) application before 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 4.8), this vulnerability is no authentication required. No vendor patch available.

Google Apple Information Disclosure Apple Music
NVD
CVSS 3.0
4.8
EPSS
0.2%
EPSS 0% CVSS 4.8
MEDIUM This Month

The Apple Music (aka com.apple.android.music) application before 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 4.8), this vulnerability is no authentication required. No vendor patch available.

Google Apple Information Disclosure +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy