NOTICE

Some features on this website won't work without JavaScript such as theme toggle, search bar, and copy article.

Apple Music Arbitrary JavaScript Execution

MEDIUM CVE-2024-23829 December 10, 2024

Dominik Penner @zer0pwn

DESCRIPTION

A vulnerability in Apple Music for Windows allows arbitrary JavaScript execution through maliciously crafted content.

DETAILS

The Apple Music application for Windows is vulnerable to arbitrary JavaScript execution through the manipulation of content displayed in the application. This could allow an attacker to execute arbitrary code in the context of the application.

AFFECTING

Apple Music • TBD for Windows

REFERENCES

https://support.apple.com/en-us/HT213927