📦

music_player_daemon

Vendor: musicpd

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.44% Exploit Prob.

Latest CVE CVE-2022-48363 Feb 26

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2022-48363

In MPD before 0.23.8, as used on Automotive Grade Linux and other platforms, the PipeWire output plugin mishandles a Drain call in certain situations involving truncated files. Eventually there is an assertion failure in libmpdclient because libqtappfw passes in a NULL pointer.

EPSS: 0.52%

Severity: HIGH

Feb 26, 2023

7.5 CVSS

CVE-2022-46449

RCE

An issue in MPD (Music Player Daemon) v0.23.10 allows attackers to cause a Denial of Service (DoS) via a crafted input.

EPSS: 0.36%

Severity: HIGH

Jan 10, 2023

Displaying 2 of 2 Total Entries

Total 1 Sections