CVE-2023-2479
CRITICAL NUCLEIappium-desktop < 1.22.3-4 - OS Command Injection
Title source: llmExploitation Summary
CVE-2023-2479 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
Nuclei Templates (1)
Appium Desktop Server - Remote Code Execution
CRITICALby zn9988
References (2)
Core 2
Core References
Exploit, Third Party Advisory
https://huntr.dev/bounties/fbdeec3c-d197-4a68-a547-7f93fb9594b4
Scores
CVSS v3
9.8
EPSS
0.2201
EPSS Percentile
97.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (2)
appium/appium-desktop
< 1.22.3-4
npm/appium-desktop
0npm
Published
May 02, 2023
Tracked Since
Feb 18, 2026