cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-28203,https://securityvulnerability.io/vulnerability/CVE-2023-28203,Security Vulnerability in Apple Music for Android Exposes User Contacts,"A security vulnerability in Apple Music for Android allows the app to access users' contact information without proper authorization. This issue was addressed in version 4.2.0, which includes improved checks to prevent unauthorized access. Users are encouraged to update their app to the latest version to mitigate this risk and safeguard their private information.",Apple,Apple Music for Android,5.5,MEDIUM,0.000590000010561198,false,,false,false,false,,,false,false,,2023-07-28T05:15:00.000Z,0
CVE-2023-32427,https://securityvulnerability.io/vulnerability/CVE-2023-32427,Network Traffic Interception Vulnerability in Apple Music for Android,"A network security vulnerability has been identified in Apple Music for Android, allowing an attacker with privileged access to intercept sensitive network traffic. This flaw, resolved in version 4.2.0, emphasizes the importance of using HTTPS to safeguard data transmitted over the internet. Users are encouraged to update to the latest version to ensure their data remains secure.",Apple,Apple Music For Android,5.9,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2023-07-28T05:15:00.000Z,0
CVE-2021-46841,https://securityvulnerability.io/vulnerability/CVE-2021-46841,Network Activity Tracking Issue in Apple Music for Android,"A vulnerability in Apple Music for Android allows an attacker in a privileged network position to monitor user activity due to improper data transmission. This issue has been addressed in version 3.5.0 by implementing HTTPS, enhancing data protection during network communication.",Apple,Apple Music For Android,5.9,MEDIUM,0.001500000013038516,false,,false,false,false,,,false,false,,2023-02-27T00:00:00.000Z,0
CVE-2022-32836,https://securityvulnerability.io/vulnerability/CVE-2022-32836,Sensitive Data Exposure in Apple Music for Android,A vulnerability in Apple Music for Android could allow unauthorized access to sensitive user data due to inadequate state management. This issue has been addressed in version 3.9.10. Users are encouraged to update their applications to ensure their data remains secure.,Apple,Apple Music For Android,7.5,HIGH,0.0014100000262260437,false,,false,false,false,,,false,false,,2023-02-27T00:00:00.000Z,0
CVE-2022-32846,https://securityvulnerability.io/vulnerability/CVE-2022-32846,Logic Issue in Apple Music for Android Exposes User Data,A logic issue in Apple Music for Android has been identified that may enable unauthorized access to sensitive user data. This vulnerability has been addressed with improved state management in version 3.9.10 of the app. Users are encouraged to update to this version to ensure their personal information remains protected.,Apple,Apple Music For Android,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2023-02-27T00:00:00.000Z,0
CVE-2022-32906,https://securityvulnerability.io/vulnerability/CVE-2022-32906,SSL/TLS Interception Vulnerability in Apple Music for Android,"An SSL/TLS interception vulnerability affects Apple Music for Android, enabling potential interception of network traffic by users in a privileged network position. This flaw allows attackers to compromise the security of data transmission by exploiting vulnerabilities in SSL/TLS connections. This issue has been addressed in Apple Music version 3.9.10 for Android, which enforces the use of HTTPS to ensure secure communication over the network, mitigating the risk of unauthorized data capture.",Apple,Apple Music For Android,5.3,MEDIUM,0.000910000002477318,false,,false,false,false,,,false,false,,2023-02-27T00:00:00.000Z,0
CVE-2020-9982,https://securityvulnerability.io/vulnerability/CVE-2020-9982,,This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials.,Apple,Apple Music For Android,5.5,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2020-10-27T20:53:09.000Z,0
CVE-2017-2387,https://securityvulnerability.io/vulnerability/CVE-2017-2387,,"The Apple Music (aka com.apple.android.music) application before 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.",Apple,Apple Music Before 2.0 For Android,4.8,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2017-04-07T11:12:00.000Z,0