CVE-2022-32269 Information

Description

In Real Player 20.0.8.310 the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). This leads to arbitrary code execution.

Reference

https://www.youtube.com/watch?v=9c9Q4VZQOUk https://github.com/Edubr2020/RealPlayer_G2_RCE