In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). This leads to arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-06-03T05:35:17
Updated: 2024-08-03T07:39:51.021Z
Reserved: 2022-06-03T00:00:00
Link: CVE-2022-32269
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-06-03T06:15:07.643
Modified: 2023-08-08T14:21:49.707
Link: CVE-2022-32269
Redhat
No data.