CVE-2020-27895

Summary

An information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. This issue is fixed in iTunes 12.11 for Windows. A malicious application may be able to access local users Apple IDs.

Affected Software

VendorProductVersion RangeStatus
AppleiTunes for Windowsunspecified < 12.11affected

Weaknesses

  • A malicious application may be able to access local users Apple IDs

ADP Enrichment

CVE Program Container

Additional References

References