CVE-2023-29192

SilverwareGames.io users with access to the game upload panel are able to edit download links for games uploaded by other developers

CVSS 2.7 LOWEPSS 0.4%CWE-668

Vexday Risk Score

8Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 2.7EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

10 abr 2023Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

SilverwareGames.io versions before 1.2.19 allow users with access to the game upload panel to edit download links for games uploaded by other developers. This has been fixed in version 1.2.19.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Produtos afetados

mesosoi · silverwaregames-io-issue-tracker

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/mesosoi/silverwaregames-io-issue-tracker/security/advisories/GHSA-m6h6-wph7-498f