Race Condition Vulnerability in iTunes Installer for Windows

Race Condition Vulnerability in iTunes Installer for Windows

CVE-2019-6232 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

A race condition existed during the installation of iTunes for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for Windows 7.11. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.

Learn more about our Cloud Audit.