The host is installed with Apple iTunes before 12.5.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle WKWebView certificate validation. Successful exploitation allows attackers in a privileged network position may be able to intercept and alter network traffic to applications.