Apple · Itunes · CVE-2021-30862
**Name of the Vulnerable Software and Affected Versions**
iTunes U versions prior to 3.8.3
**Description**
A validation issue was addressed with improved input sanitization. Processing a maliciously crafted URL may lead to arbitrary javascript code execution.
**Recommendations**
For versions prior to 3.8.3, update to version 3.8.3 to resolve the issue. As a temporary workaround, consider avoiding the use of maliciously crafted URLs until the update is applied.