Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
valvesoftware vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-7950
meshsystem.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a vulnerable function call.
Valvesoftware Dota 2
7.8
CVSSv3
CVE-2020-7951
meshsystem.dll in Valve Dota 2 prior to 7.23e allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is affected by memory corruption.
Valvesoftware Dota 2
7.8
CVSSv3
CVE-2020-7952
rendersystemdx9.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is affected by memory corruption.
Valvesoftware Dota 2
9.8
CVSSv3
CVE-2023-35855
A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a remote client's machine by modifying the lservercfgfile console variable.
Valvesoftware Counter-strike
1 Github repository
7.8
CVSSv3
CVE-2020-7949
schemasystem.dll in Valve Dota 2 prior to 7.23f allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a GetValue call.
Valvesoftware Dota 2
NA
CVE-2015-4016
The client detection protocol in Valve Steam allows remote malicious users to cause a denial of service (process crash) via a crafted response to a broadcast packet.
Valvesoftware Steam Client
7.8
CVSSv3
CVE-2020-9005
meshsystem.dll in Valve Dota 2 through 2020-02-17 allows remote malicious users to achieve code execution or denial of service by creating a gaming server with a crafted map, and inviting a victim to this server. A GetValue call is mishandled.
Valvesoftware Dota 2
7.3
CVSSv3
CVE-2023-30382
A buffer overflow in the component hl.exe of Valve Half-Life up to 5433873 allows malicious users to execute arbitrary code and escalate privileges by supplying crafted parameters.
Valvesoftware Half-life -
7.8
CVSSv3
CVE-2020-15530
An issue exists in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILES(X86)%\Steam and/or %COMMONPROGRAMFILES(X86)%\Steam have weak permissions during a critical time window. An attacker can ma...
Valvesoftware Steam Client 2.10.91.91
5.4
CVSSv3
CVE-2018-12270
In Valve Steam 1528829181 BETA, it is possible to perform a homograph / homoglyph attack to create fake URLs in the client, which may trick users into visiting unintended web sites.
Valvesoftware Steam Client 1528829181
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »