Musicpd Music Player Daemon — known CVE vulnerabilities
Every CVE whose affected-product data names Musicpd Music Player Daemon, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-46449 — CVSS 7.5 (high): An issue in MPD (Music Player Daemon) v0.23.10 allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2022-48363 — CVSS 7.5 (high): In MPD before 0.23.8, as used on Automotive Grade Linux and other platforms, the PipeWire output plugin mishandles a Drain call in certain…