Vulnerability Description
iTunesRPC-Remastered is a Discord Rich Presence for iTunes on Windows utility. In affected versions iTunesRPC-Remastered did not properly sanitize user input used to remove files leading to file deletion only limited by the process permissions. Users are advised to upgrade as soon as possible.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Itunesrpc-Remastered Project | Itunesrpc-Remastered | >= 3.1.0, < 3.1.1 |
Related Weaknesses (CWE)
References
- https://github.com/bildsben/iTunesRPC-Remastered/commit/1eb1e5428f0926b2829a0bbbPatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/security/advisories/GHSA-cc8j-fThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/commit/1eb1e5428f0926b2829a0bbbPatchThird Party Advisory
- https://github.com/bildsben/iTunesRPC-Remastered/security/advisories/GHSA-cc8j-fThird Party Advisory
FAQ
What is CVE-2022-23609?
CVE-2022-23609 is a vulnerability with a CVSS score of 8.3 (HIGH). iTunesRPC-Remastered is a Discord Rich Presence for iTunes on Windows utility. In affected versions iTunesRPC-Remastered did not properly sanitize user input used to remove files leading to file delet...
How severe is CVE-2022-23609?
CVE-2022-23609 has been rated HIGH with a CVSS base score of 8.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-23609?
Check the references section above for vendor advisories and patch information. Affected products include: Itunesrpc-Remastered Project Itunesrpc-Remastered.