What the vulnerability does
01Description
OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
CVE-2023-2479
CRITICAL
CVE-2023-2479: OS Command Injection in appium/appium-desktop
CVSS base score
9.8/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
May 2, 2023
CVE published
January 30, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-22265 Roxy-WI has a Command Injection via grep parameter in logs.py allows authenticated RCE
CVE-2026-30809 OS Command Injection in WebServerModuleDebug via Blacklist Bypass leads to Remote Code Execution
CVE-2026-22897 QuNetSwitch
CVE-2023-6078 OS Command Injection vulnerability affecting BIOVIA Materials Studio products from Release BIOVIA 2021 through Release BIOVIA 2023
CVE-2025-66273 QTS, QuTS hero
