CVE-2024-28886 | ameya/ayame UTAU up to 0.4.18 Project File os command injection

Inserito da Angelo Barbosa | Mag 28, 2024 | CVE

A vulnerability was found in ameya/ayame UTAU up to 0.4.18. It has been rated as critical. Affected by this issue is some unknown functionality of the component Project File Handler. The manipulation leads to os command injection.

This vulnerability is handled as CVE-2024-28886. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28886 | ameya/ayame UTAU up to 0.4.18 Project File os command injection

Post correlati

CVE-2024-36435 | Supermicro BMC up to X13 stack-based overflow

CVE-2024-5964 | Zenon Lite Plugin up to 1.9 on WordPress Button Shortcode cross site scripting

CVE-2024-1201 | PanteraSoft HDD Health up to 4.2.0.112 unquoted search path

CVE-2024-6740 | Openfind Mail2000 7.0/8.0 Attachment cross site scripting (Patch 131)