Actae0N

**Name of the Vulnerable Software and Affected Versions** iTunes versions prior to 12.12.4 for Windows macOS versions prior to Monterey 12.4 iOS versions prior to 15.5 iPadOS versions prior to 15.5 tvOS versions prior to 15.5 watchOS versions prior to 8.6 **Description** The issue is related to an integer overflow that can be triggered by a remote attacker, potentially causing unexpected application termination or arbitrary code execution. **Recommendations** For iTunes versions prior to 12.12.4 for Windows, update to version 12.12.4 or later. For macOS versions prior to Monterey 12.4, update to macOS Monterey 12.4 or later. For iOS versions prior to 15.5, update to iOS 15.5 or later. For iPadOS versions prior to 15.5, update to iPadOS 15.5 or later. For tvOS versions prior to 15.5, update to tvOS 15.5 or later. For watchOS versions prior to 8.6, update to watchOS 8.6 or later.

**Name of the Vulnerable Software and Affected Versions** ruby-jss gem versions prior to 1.6.0 **Description** The issue allows remote attackers to execute arbitrary code due to the Plist gem's behavior of using `Marshal.load` during XML document processing. This behavior is documented and can be exploited for malicious purposes. **Recommendations** For versions prior to 1.6.0, update to version 1.6.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the Plist gem until a patch is applied.