Fromsoftware: >> Dark Souls Iii Security Vulnerabilities
The matchmaking servers of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allow remote attackers to send arbitrary push requests to clients via a RequestSendMessageToPlayers request. For example, ability to send a push message to hundreds of thousands of machines is only restricted on the client side, and can thus be bypassed with a modified client.
CVSS Score
8.8
EPSS Score
0.091
Published
2022-03-20
A buffer overflow in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via matchmaking servers, a different vulnerability than CVE-2021-34170.
CVSS Score
9.8
EPSS Score
0.099
Published
2022-03-20
Bandai Namco FromSoftware Dark Souls III allows remote attackers to execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.032
Published
2021-06-15