Vulnerabilities > CVE-2023-30382 - Out-of-bounds Write vulnerability in Valvesoftware Half-Life

CVSS 7.3 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

valvesoftware

CWE-787

NVD

Published: 2023-05-23

Updated: 2023-05-31

Summary

A buffer overflow in the component hl.exe of Valve Half-Life up to 5433873 allows attackers to execute arbitrary code and escalate privileges by supplying crafted parameters.

Vulnerable Configurations

Part	Description	Count
Application	Valvesoftware Valvesoftware Half Life -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://labs.jumpsec.com/advisory-cve-2023-30382-half-life-local-privilege-escalation/