CVE-2022-23609

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-23609

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23609.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-23609

Aliases

GHSA-cc8j-fr7v-7r6q

Published

2022-02-04T22:32:54Z

Modified

2026-04-02T07:49:24.610563Z

Severity

8.3 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L CVSS Calculator

Summary

Path traveresal in iTunesRPC-Remastered

Details

iTunesRPC-Remastered is a Discord Rich Presence for iTunes on Windows utility. In affected versions iTunesRPC-Remastered did not properly sanitize user input used to remove files leading to file deletion only limited by the process permissions. Users are advised to upgrade as soon as possible.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/23xxx/CVE-2022-23609.json",
    "cwe_ids": [
        "CWE-22"
    ],
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git / github.com/benjjvi/itunesrpc-remastered

Affected ranges

Type: GIT
Repo: https://github.com/benjjvi/itunesrpc-remastered
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

1eb1e5428f0926b2829a0bbbb65b0d946e608593

Type: GIT
Repo: https://github.com/benjjvi/itunesrpc-remastered
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

1eb1e5428f0926b2829a0bbbb65b0d946e608593

Affected versions

debug.*

debug.1.0.0

debug.2.0.0

debug.3.0,0

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "3.1.0"
            },
            {
                "fixed": "3.1.1"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23609.json"