CVE-2019-17180
N/A
N/A
Summary
Valve Steam Client before 2019-09-12 allows placing or appending partially controlled filesystem content, as demonstrated by file modifications on Windows in the context of NT AUTHORITY\SYSTEM. This could lead to denial of service, elevation of privilege, or unspecified other impact.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://amonitoring.ru/article/steam_vuln_3/
- https://habr.com/ru/company/pm/blog/469507/
- https://hackerone.com/reports/682774
- https://store.steampowered.com/news/54236/
- https://hackerone.com/reports/583184
References
- https://amonitoring.ru/article/steam_vuln_3/
- https://habr.com/ru/company/pm/blog/469507/
- https://hackerone.com/reports/682774
- https://store.steampowered.com/news/54236/
- https://hackerone.com/reports/583184
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.