VYPR

Apple Music Classical for Android

by Apple Inc.

CVEs (8)

  • CVE-2022-32846HigFeb 27, 2023
    risk 0.49cvss 7.5epss 0.01

    A logic issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.

  • CVE-2022-32836HigFeb 27, 2023
    risk 0.49cvss 7.5epss 0.01

    This issue was addressed with improved state management. This issue is fixed in Apple Music 3.9.10 for Android. An app may be able to access user-sensitive data.

  • CVE-2025-43201MedAug 15, 2025
    risk 0.40cvss 6.2epss 0.00

    This issue was addressed with improved checks. This issue is fixed in Apple Music Classical 2.3 for Android. An app may be able to unexpectedly leak a user's credentials.

  • CVE-2023-32427MedJul 28, 2023
    risk 0.38cvss 5.9epss 0.00

    This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 4.2.0 for Android. An attacker in a privileged network position may be able to intercept network traffic.

  • CVE-2021-46841MedFeb 27, 2023
    risk 0.38cvss 5.9epss 0.00

    This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.5.0 for Android. An attacker in a privileged network position can track a user's activity.

  • CVE-2023-28203MedJul 28, 2023
    risk 0.36cvss 5.5epss 0.00

    The issue was addressed with improved checks. This issue is fixed in Apple Music 4.2.0 for Android. An app may be able to access contacts.

  • CVE-2020-9982MedOct 27, 2020
    risk 0.36cvss 5.5epss 0.01

    This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials.

  • CVE-2022-32906MedFeb 27, 2023
    risk 0.34cvss 5.3epss 0.00

    This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections.