Back to search
CVE-2022-32269
Published: Jun 3, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). This leads to arbitrary code execution.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://github.com/Edubr2020/RealPlayer_G2_RCE
x_refsource_MISC
https://www.youtube.com/watch?v=9c9Q4VZQOUk
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now