A new security update is available for iTunes users on Windows. Apple has just published version 12.13.3 of its software, which corrects a vulnerability that could allow a local attacker to elevate their privileges.
A flaw due to a logic problem
According to the Apple security notesthis flaw, identified as CVE-2024-44193, is linked to a “logic issue” in iTunes. It was reported by Mads Ball and Bocheng Xiang of Fudan University.
Apple says it has resolved this bug “with improved restrictions”, without giving more details on its exact nature. The update is recommended for all iTunes users on Windows 10 and later.
How to update iTunes
If you installed iTunes from the Microsoft Store, the new version should download automatically. Alternatively, you can open the software, click on the Help menu and then select “Check for updates”.
Although Apple stopped developing iTunes on Mac for several years in favor of separate apps (Music, TV, Podcasts, etc.), the software remains maintained on PC. The previous update, 12.13.2, added compatibility with the iPad Pro M4 and Air M2.
Despite the existence of the standalone applications Apple Music and Apple TV on Windows, iTunes seems set to survive for some time on the Microsoft platform. If only for security updates like this, always good to take.