Lucene search

[email protected]CVE-2023-27643

HistoryApr 14, 2023 - 12:15 p.m.

CVE-2023-27643

2023-04-1412:15:07

CWE-400

[email protected]

web.nvd.nist.gov

cve-2023-27643

issue

poweramp

denial of service

remote attacker

rescan

select folders

library

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.5%

JSON

An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause a denial of service via the Rescan button in Queue and Select Folders button in Library

Affected configurations

NVD

Node

powerampapppowerampMatch925-bundle-play

powerampapppowerampMatch954-uni

CPENameOperatorVersion
powerampapp:poweramppowerampapp powerampeq925-bundle-play
powerampapp:poweramppowerampapp powerampeq954-uni

CPE	Name	Operator	Version
powerampapp:poweramp	powerampapp poweramp	eq	925-bundle-play
powerampapp:poweramp	powerampapp poweramp	eq	954-uni

References

github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27643/CVE%20detail.md

play.google.com/store/apps/details?id=com.maxmpz.audioplayer

powerampapp.com/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.5%

JSON

Related for CVE-2023-27643

nvd1 prion1 cvelist1