iCloud for Windows 11.4 Security Content Release Date: September 24, 2020 Vulnerabilities: 1. ImageIO - Affected Versions: Windows 10 and later via the Microsoft Store - Impact: Processing a maliciously crafted tiff file may lead to a denial-of-service or potentially disclose memory contents - Description: An out-of-bounds read was addressed with improved input validation - CVE: CVE-2020-36521 - Discoverer: Xingwei Lin of Ant-Financial Light-Year Security Lab - Entry Date: May 25, 2022 2. SQLite - Affected Versions: Windows 10 and later via the Microsoft Store - Impact: A remote attacker may be able to cause a denial of service - Description: This issue was addressed with improved checks - CVE: CVE-2020-9991 - Entry Date: December 15, 2020 3. WebKit - Affected Versions: Windows 10 and later via the Microsoft Store - Impact: Processing maliciously crafted web content may lead to a cross site scripting attack - Description: An input validation issue was addressed with improved input validation - CVE: CVE-2020-9952 - Discoverer: Ryan Pickren (ryanpickren.com) - Entry Date: Not specified