The issue was addressed with improved checks. This issue is fixed in Apple Music 4.2.0 for Android. An app may be able to access contacts.
References
History

Fri, 07 Mar 2025 21:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2025-03-07T20:30:27.040Z

Reserved: 2023-03-13T18:37:25.757Z

Link: CVE-2023-28203

cve-icon Vulnrichment

Updated: 2024-08-02T12:30:24.506Z

cve-icon NVD

Status : Modified

Published: 2023-07-28T05:15:10.290

Modified: 2025-03-07T21:15:16.867

Link: CVE-2023-28203

cve-icon Redhat

No data.