cbcvebase.

Valvesoftware Counter-Strike vulnerabilities

5 known vulnerabilities affecting valvesoftware/counter-strike.

Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2019-15943P3HIGHCVSS 8.8PoCfixed in 1.37.1.12019-09-19
CVE-2019-15943 [HIGH] CWE-787 CVE-2019-15943: vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
nvd
CVE-2023-35855P3CRITICALCVSS 9.8≤ 86842023-06-19
CVE-2023-35855 [CRITICAL] CWE-120 CVE-2023-35855: A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a remote client's machine by modifying the lservercfgfile console variable.
nvd
CVE-2023-38312P3HIGHCVSS 7.5v86842023-10-15
CVE-2023-38312 [HIGH] CWE-22 CVE-2023-38312: A directory traversal vulnerability in Valve Counter-Strike 8684 allows a client (with remote contro A directory traversal vulnerability in Valve Counter-Strike 8684 allows a client (with remote control access to a game server) to read arbitrary files from the underlying server via the motdfile console variable.
nvd
CVE-2008-7203P4MEDIUMCVSS 5.0PoCv1.62009-09-11
CVE-2008-7203 [MEDIUM] CWE-399 CVE-2008-7203: Valve Software Half-Life Counter-Strike 1.6 allows remote attackers to cause a denial of service (cr Valve Software Half-Life Counter-Strike 1.6 allows remote attackers to cause a denial of service (crash) via multiple crafted login packets.
nvd
CVE-2019-15944P4MEDIUMCVSS 5.3fixed in 2019-08-292019-09-05
CVE-2019-15944 [MEDIUM] CWE-116 CVE-2019-15944: In Counter-Strike: Global Offensive before 8/29/2019, community game servers can display unsafe HTML In Counter-Strike: Global Offensive before 8/29/2019, community game servers can display unsafe HTML in a disconnection message.
nvd
Valvesoftware Counter-Strike vulnerabilities | cvebase