CVE-2021-30481

CVSS 8 HIGHEPSS 3.5%

Valve Steam before 2021-04-17, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.

CVSS:3.1/AC:H/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:R

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://news.ycombinator.com/item?id=26762170 https://twitter.com/floesen_/status/1337107178096881666 https://twitter.com/the_secret_club/status/1380868759129296900 https://www.youtube.com/watch?v=rNQn--9xR1Q