CVE-2016-4614

Description

libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud before 5.2.1 on Windows, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2016-4615, CVE-2016-4616, and CVE-2016-4619.

Risk Information

Base Score

9.8

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

2.581

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities affected in Apple iTunes (X64) 12.4.1	Windows
Multiple vulnerabilities affected in Apple iTunes 12.4.1	Windows
Multiple Vulnerabilities are affected in Apple iTunes (X64) 12.4.1	Windows
Multiple Vulnerabilities are affected in Apple iTunes 12.4.1	Windows
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.6 Update	Mac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.6 Combo Update	Mac
Vulnerabilities CVE-2016-4614 are affected in Apple iTunes For Mac 12.4.1	Mac
Multiple Vulnerabilities are affected in Apple iTunes For Mac 12.4.1	Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-342817	Apple iTunes (X64) (12.13.4.4)
PATCH-342816	Apple iTunes (12.13.4.4)
PATCH-600753	OS X El Capitan 10.11.6 Update
PATCH-600754	OS X El Capitan 10.11.6 Combo Update

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234