CVE-2024-54540

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5.0.152 for Windows. Processing maliciously crafted web content may disclose internal states of the app.
References
Link Resource
https://support.apple.com/en-us/122043 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:apple:music:*:*:*:*:*:*:*:*
OR cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_11_24h2:-:*:*:*:*:*:arm64:*

History

24 Mar 2025, 18:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.3
First Time Microsoft windows 10 22h2
Microsoft windows 11 24h2
Apple
Apple music
Microsoft
References () https://support.apple.com/en-us/122043 - () https://support.apple.com/en-us/122043 - Vendor Advisory
CWE CWE-79
NVD-CWE-noinfo
CPE cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_11_24h2:-:*:*:*:*:*:arm64:*
cpe:2.3:a:apple:music:*:*:*:*:*:*:*:*

18 Feb 2025, 21:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 5.5
v2 : unknown
v3 : unknown
CWE CWE-79

16 Jan 2025, 15:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
CWE CWE-79
Summary
  • (es) El problema se solucionó con una mejora en la desinfección de entradas. Este problema se solucionó en Apple Music 1.5.0.152 para Windows. El procesamiento de contenido web creado con fines malintencionados puede revelar estados internos de la aplicación.

15 Jan 2025, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-01-15 20:15

Updated : 2025-03-24 18:15


NVD link : CVE-2024-54540

Mitre link : CVE-2024-54540

CVE.ORG link : CVE-2024-54540


JSON object : View

Products Affected

apple

  • music

microsoft

  • windows_10_22h2
  • windows_11_24h2
CWE
NVD-CWE-noinfo CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')