Description
A buffer overflow was addressed with improved input validation. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.
CVSS breakdown
CVSS 3.1
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Apple / AirPlay audio SDK0 – 2.7.1
- Apple / AirPlay video SDK0 – 2.7.1
References
- VENDOR_ADVISORYhttps://support.apple.com/en-us/122403