The issue was addressed with improved checks. This issue is fixed in Apple Music 4.2.0 for Android. An app may be able to access contacts.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-07-28
This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 4.2.0 for Android. An attacker in a privileged network position may be able to intercept network traffic.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-07-28
This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-02-27
This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.5.0 for Android. An attacker in a privileged network position can track a user's activity.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-02-27