Vulnerabilities > Teeworlds

DATE CVE VULNERABILITY TITLE RISK
2023-05-23 CVE-2023-31517 Memory Leak vulnerability in Teeworlds 0.7.5
A memory leak in the component CConsole::Chain of Teeworlds v0.7.5 allows attackers to cause a Denial of Service (DoS) via opening a crafted file.
network
low complexity
teeworlds CWE-401
7.5
2023-05-23 CVE-2023-31518 Use After Free vulnerability in Teeworlds 0.7.5
A heap use-after-free in the component CDataFileReader::GetItem of teeworlds v0.7.5 allows attackers to cause a Denial of Service (DoS) via a crafted map file.
local
low complexity
teeworlds CWE-416
5.5
2021-12-15 CVE-2021-43518 Classic Buffer Overflow vulnerability in multiple products
Teeworlds up to and including 0.7.5 is vulnerable to Buffer Overflow.
local
low complexity
teeworlds fedoraproject CWE-120
7.8
2020-04-22 CVE-2020-12066 Improper Input Validation vulnerability in multiple products
CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server.
7.5
2020-04-22 CVE-2019-20787 Integer Overflow or Wraparound vulnerability in multiple products
Teeworlds before 0.7.4 has an integer overflow when computing a tilemap size.
network
low complexity
teeworlds opensuse CWE-190
critical
9.8
2019-04-05 CVE-2019-10877 Integer Overflow or Wraparound vulnerability in Teeworlds 0.7.2
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load() in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled.
network
low complexity
teeworlds CWE-190
critical
9.8
2019-04-05 CVE-2019-10879 Integer Overflow or Wraparound vulnerability in Teeworlds 0.7.2
In Teeworlds 0.7.2, there is an integer overflow in CDataFileReader::Open() in engine/shared/datafile.cpp that can lead to a buffer overflow and possibly remote code execution, because size-related multiplications are mishandled.
network
low complexity
teeworlds CWE-190
critical
9.8
2019-04-05 CVE-2019-10878 Out-of-bounds Write vulnerability in Teeworlds 0.7.2
In Teeworlds 0.7.2, there is a failed bounds check in CDataFileReader::GetData() and CDataFileReader::ReplaceData() and related functions in engine/shared/datafile.cpp that can lead to an arbitrary free and out-of-bounds pointer write, possibly resulting in remote code execution.
network
low complexity
teeworlds CWE-787
critical
9.8
2018-10-20 CVE-2018-18541 Improper Input Validation vulnerability in multiple products
In Teeworlds before 0.6.5, connection packets could be forged.
network
low complexity
teeworlds debian CWE-20
7.5
2017-02-22 CVE-2016-9400 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code via vectors involving snap handling.
network
low complexity
teeworlds fedoraproject CWE-119
critical
9.8