1 results (0.001 seconds)
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2023-36177 – Debian Security Advisory 5847-1
https://notcve.org/view.php?id=CVE-2023-36177
23 Jan 2024 — An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API. Se descubrió un problema en badaix Snapcast versión 0.27.0, que permite a atacantes remotos ejecutar código arbitrario y obtener información confidencial a través de una solicitud manipulada en JSON-RPC-API. It was discovered that the JSON RPC interface of the server component of Snapcast, a multi-room client-server audio player, all... • http://snapcast.com • CWE-94: Improper Control of Generation of Code ('Code Injection') •