CVE-2021-24030

EPSS 1.7%CWE-88

The fbgames protocol handler registered as part of Facebook Gameroom does not properly quote arguments passed to the executable. That allows a malicious URL to cause code execution. This issue affects versions prior to v1.26.0.

Produtos afetados

Facebook · Facebook Gameroom

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.facebook.com/security/advisories/cve-2021-24030