Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
valvesoftware vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2020-9005
meshsystem.dll in Valve Dota 2 through 2020-02-17 allows remote malicious users to achieve code execution or denial of service by creating a gaming server with a crafted map, and inviting a victim to this server. A GetValue call is mishandled.
Valvesoftware Dota 2
NA
CVE-2023-35855
A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a remote client's machine by modifying the lservercfgfile console variable.
Valvesoftware Counter-strike
1 Github repository
605
VMScore
CVE-2020-7949
schemasystem.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a GetValue call.
Valvesoftware Dota 2
534
VMScore
CVE-2021-30481
Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.
Valvesoftware Steam Client
1 Github repository
605
VMScore
CVE-2020-7950
meshsystem.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a vulnerable function call.
Valvesoftware Dota 2
605
VMScore
CVE-2020-7951
meshsystem.dll in Valve Dota 2 prior to 7.23e allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is affected by memory corruption.
Valvesoftware Dota 2
605
VMScore
CVE-2020-7952
rendersystemdx9.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is affected by memory corruption.
Valvesoftware Dota 2
445
VMScore
CVE-2015-4016
The client detection protocol in Valve Steam allows remote malicious users to cause a denial of service (process crash) via a crafted response to a broadcast packet.
Valvesoftware Steam Client
685
VMScore
CVE-2019-15943
vphysics.dll in Counter-Strike: Global Offensive prior to 1.37.1.1 allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
Valvesoftware Counter-strike\\ Global Offensive
1 EDB exploit
1 Article
516
VMScore
CVE-2018-12270
In Valve Steam 1528829181 BETA, it is possible to perform a homograph / homoglyph attack to create fake URLs in the client, which may trick users into visiting unintended web sites.
Valvesoftware Steam Client 1528829181
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »