CNNVD-202512-2068 Information

CNNVD ID

CNNVD-202512-2068

Related CVE

CVE-2024-58286

• CNNVD Published: 2025-12-11

Description (Chinese)

dizqueTV是vexorian个人开发者的一个直播创建工具。 dizqueTV 1.5.3版本存在操作系统命令注入漏洞，该漏洞源于FFMPEG可执行路径设置输入验证不足，可能导致远程代码执行。

Description (English)

DizqueTV is a live creation tool for vexorian personal developers. Version 1.5.3 of dizqueTV contains a bug in the operating system command, which results from inadequate FFMPEG execution path setting input validation, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

个人开发者

Published

2025-12-11

Last Modified

2026-02-24

References

https://github.com/vexorian/dizquetv https://www.exploit-db.com/exploits/52079 https://www.vulncheck.com/advisories/dizquetv-remote-code-execution-via-ffmpeg-executable-path

Patch

https://github.com/vexorian/dizquetv/releases