← back
CVE-2019-17180

CVE-2019-17180

EPSS 0.7%
Valve Steam Client before 2019-09-12 allows placing or appending partially controlled filesystem content, as demonstrated by file modifications on Windows in the context of NT AUTHORITY\SYSTEM. This could lead to denial of service, elevation of privilege, or unspecified other impact.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://amonitoring.ru/article/steam_vuln_3/https://habr.com/ru/company/pm/blog/469507/https://hackerone.com/reports/583184https://hackerone.com/reports/682774https://store.steampowered.com/news/54236/