6
CVSSv2

CVE-2021-30481

Published: 10/04/2021 Updated: 21/04/2021
CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8
CVSS v3 Base Score: 9 | Impact Score: 6 | Exploitability Score: 2.3
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

Vulnerability Summary

Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.

Most Upvoted Vulmon Research Post

Valve Steam remote code execution. This vulnerability works for all Source Engine games. Exploitation video:

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

Vendor Advisories

Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click ...

Github Repositories

CVE-2021-30481 nvdnistgov/vuln/detail/CVE-2021-30481 soon

Vulnerability 纪念我们始终热爱的 来人皆是朋友 去人也不留 © Edge Security Team 本项目多数漏洞为互联网收集(多数均注明了原作者链接,如有侵权请联系我们删除,谢谢),部分漏洞进行了复现。 如有引用请注明文章内原作者链接,谢谢!!! 免责申明:项目所发布的资料\FOFA搜索语法\POC\EXP

PoC in GitHub 2021 CVE-2021-1056 (2021-01-07) NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidiako) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure pokerfaceSad/CVE-2021-1056 CVE-2021-