Vulnerability Details CVE-2019-15943
vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.217
EPSS Ranking 95.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://packetstormsecurity.com/files/154705/Counter-Strike-Global-Offensive-Code-Execution-Denial-Of-Service.html
- https://blog.counter-strike.net/index.php/category/updates/
- https://github.com/bi7s/CVE/blob/master/CVE-2019-15943/README.md
- http://packetstormsecurity.com/files/154705/Counter-Strike-Global-Offensive-Code-Execution-Denial-Of-Service.html
- https://blog.counter-strike.net/index.php/category/updates/
- https://github.com/bi7s/CVE/blob/master/CVE-2019-15943/README.md
Products affected by CVE-2019-15943
-
cpe:2.3:a:valvesoftware:counter-strike:_global_offensive