9
CVSSv3

CVE-2021-30481

Published: 10/04/2021 Updated: 21/04/2021
CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8
CVSS v3 Base Score: 9 | Impact Score: 6 | Exploitability Score: 2.3
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

Vulnerability Summary

Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.

Most Upvoted Vulmon Research Post

Valve Steam remote code execution. This vulnerability works for all Source Engine games. Exploitation video:

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

Vendor Advisories

Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click ...

Github Repositories

CVE-2021-30481 nvdnistgov/vuln/detail/CVE-2021-30481 soon