Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-54540

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5.0.152 for Windows. Processing maliciously crafted web content may disclose internal states of the app.

Published

2025-01-15T20:15:28.703

Last Modified

2025-03-24T18:15:20.780

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
  • Type: Secondary
    CWE-79
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application apple music < 1.5.0.152 Yes
Operating System microsoft windows_10_22h2 - No
Operating System microsoft windows_10_22h2 - No
Operating System microsoft windows_11_24h2 - No
References