Vulnerability Description
iTunesRPC-Remastered is a discord rich presence application for use with iTunes & Apple Music. In code before commit 24f43aa user input is not properly sanitized and code injection is possible. Users are advised to upgrade as soon as is possible. There are no known workarounds for this issue.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Itunesrpc-Remastered Project | Itunesrpc-Remastered | - |
Related Weaknesses (CWE)
References
- https://github.com/bildsben/iTunesRPC-Remastered/commit/24f43aac0f4116b3d89fdbe9PatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/commit/54b02d9f3a94de94e4fb4719PatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/security/advisories/GHSA-3xpp-rPatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/commit/24f43aac0f4116b3d89fdbe9PatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/commit/54b02d9f3a94de94e4fb4719PatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/security/advisories/GHSA-3xpp-rPatchThird Party Advisory
FAQ
What is CVE-2022-23603?
CVE-2022-23603 is a vulnerability with a CVSS score of 9.9 (CRITICAL). iTunesRPC-Remastered is a discord rich presence application for use with iTunes & Apple Music. In code before commit 24f43aa user input is not properly sanitized and code injection is possible. Users ...
How severe is CVE-2022-23603?
CVE-2022-23603 has been rated CRITICAL with a CVSS base score of 9.9/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-23603?
Check the references section above for vendor advisories and patch information. Affected products include: Itunesrpc-Remastered Project Itunesrpc-Remastered.