CVE-2023-2479

Description

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.

CVSS breakdown

Affected products

• @appium / appium/appium-desktopunspecified – v1.22.3-4

Exploits & PoCs

• nucleiAppium Desktop Server - Remote Code Executionby zn9988

References

• MISChttps://huntr.dev/bounties/fbdeec3c-d197-4a68-a547-7f93fb9594b4
• PATCHhttps://github.com/appium/appium-desktop/commit/12a988aa08b9822e97056a09486c9bebb3aad8fe