1.1.0

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

valvesoftware

CWE-787

critical

NVD

Published: 2020-11-18

Updated: 2022-10-21

Summary

Valve's Game Networking Sockets prior to version v1.2.0 improperly handles unreliable segments with negative offsets in function SNP_ReceiveUnreliableSegment(), leading to a Heap-Based Buffer Underflow and a free() of memory not from the heap, resulting in a memory corruption and probably even a remote code execution.

Vulnerable Configurations

Part	Description	Count
Application	Valvesoftware Valvesoftware Game Networking Sockets - Valvesoftware Game Networking Sockets 1.0.0 Valvesoftware Game Networking Sockets 1.1.0	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/ValveSoftware/GameNetworkingSockets/commit/e0c86dcb9139771db3db0cfdb1fb8bef0af19c43
https://research.checkpoint.com/2020/game-on-finding-vulnerabilities-in-valves-steam-sockets/