OS command injection vulnerability exists in UTAU versions prior to v0.4.19. If a user of the product opens a crafted UTAU project file (.ust file), an arbitrary OS command may be executed.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jvn.jp/en/jp/JVN71404925/ |
![]() ![]() ![]() |
https://utau2008.xrea.jp/ |
![]() ![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: jpcert
Published: 2024-05-28T03:11:18.648Z
Updated: 2024-08-02T01:03:50.258Z
Reserved: 2024-05-22T05:26:04.333Z
Link: CVE-2024-28886

Updated: 2024-08-02T01:03:50.258Z

Status : Awaiting Analysis
Published: 2024-05-28T03:15:08.470
Modified: 2024-11-21T09:07:06.777
Link: CVE-2024-28886

No data.