3 matches found
CVE-2022-32271
In Real Player 20.0.8.310, there is a DCP:// URI Remote Arbitrary Code Execution Vulnerability. This is an internal URL Protocol used by Real Player to reference a file that contains an URL. It is possible to inject script code to arbitrary domains. It is also possible to reference arbitrary loca...
CVE-2022-32271
In Real Player 20.0.8.310, there is a DCP:// URI Remote Arbitrary Code Execution Vulnerability. This is an internal URL Protocol used by Real Player to reference a file that contains an URL. It is possible to inject script code to arbitrary domains. It is also possible to reference arbitrary loca...
CVE-2022-32271
CVE-2022-32271 relates to RealNetworks Real Player 20.0.8.310, where a DCP:// URI (an internal protocol used to reference a file containing a URL) can be abused to inject script code to arbitrary domains and reference arbitrary local files, enabling remote arbitrary code execution. The CVSS estim...