Hluwa

**Name of the Vulnerable Software and Affected Versions** Apple Music versions prior to 4.2.0 **Description** The issue is related to insufficient access control in the Apple Music app for Android, which may allow an app to access a user's contacts. This could potentially lead to the disclosure of user contact information. **Recommendations** For versions prior to 4.2.0, update to Apple Music 4.2.0 for Android to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Music versions prior to 3.9.10 **Description** The issue allows an app to potentially access user-sensitive data due to inadequate state management. This has been addressed with improved state management. **Recommendations** For versions prior to 3.9.10, update to Apple Music 3.9.10 for Android to resolve the issue.

**Nome do software vulnerável e versões afetadas** Versões do Galaxy Store anteriores à 4.5.40.5 **Descrição** O problema está relacionado à sanitização inadequada de intents recebidos na Galaxy Store, permitindo que invasores locais acessem provedores de conteúdo privilegiados com a permissão da Galaxy Store. **Recomendações** Para versões da Galaxy Store anteriores à 4.5.40.5, atualize para a versão 4.5.40.5 ou posterior para resolver o problema.