CVE-2022-32270

Published: Jun 3, 2022Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

In Real Player 20.0.7.309 and 20.0.8.310, external::Import() allows download of arbitrary file types and Directory Traversal, leading to Remote Code Execution. This occurs because it is possible to plant executables in the startup folder (DLL planting could also occur).

Affected (2)

Products: Realnetworks: Realplayer

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Realnetworks Realplayer	Version 20.0.7.309
Realnetworks Realplayer	Version 20.0.8.310

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (4)

https://github.com/Edubr2020/RP_Import_RCE

Source: cve@mitre.org

ExploitThird Party Advisory

https://youtu.be/CONlijEgDLc

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/Edubr2020/RP_Import_RCE

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://youtu.be/CONlijEgDLc

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.