← back
CVE-2020-6019

CVE-2020-6019

EPSS 2.8%CWE-248
Valve's Game Networking Sockets prior to version v1.2.0 improperly handles inlined statistics messages in function CConnectionTransportUDPBase::Received_Data(), leading to an exception thrown from libprotobuf and resulting in a crash.
Affected products
n/a · Game Networking Sockets

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/ValveSoftware/GameNetworkingSockets/commit/d944a10808891d202bb1d5e1998de6e0423af678https://research.checkpoint.com/2020/game-on-finding-vulnerabilities-in-valves-steam-sockets/