CVE-2022-32906

Summary

This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections.

Affected Software

VendorProductVersion RangeStatus
AppleApple Music for Androidunspecified < 3.9affected

Weaknesses

  • A user in a privileged network position may intercept SSL/TLS connections

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References