Teeworlds Teeworlds 0.5.2

CPE Details

Teeworlds Teeworlds 0.5.2
teeworlds
teeworlds
0.5.2
2019-03-29
17h33 +00:00
2019-03-29
17h33 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:teeworlds:teeworlds:0.5.2:*:*:*:*:*:*:*

Informations

Vendor

teeworlds

Product

teeworlds

Version

0.5.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-43518 2021-12-15 13h33 +00:00 Teeworlds up to and including 0.7.5 is vulnerable to Buffer Overflow. A map parser does not validate m_Channels value coming from a map file, leading to a buffer overflow. A malicious server may offer a specially crafted map that will overwrite client's stack causing denial of service or code execution.
7.8
High
CVE-2019-20787 2020-04-22 14h19 +00:00 Teeworlds before 0.7.4 has an integer overflow when computing a tilemap size.
9.8
Critical
CVE-2018-18541 2018-10-20 20h00 +00:00 In Teeworlds before 0.6.5, connection packets could be forged. There was no challenge-response involved in the connection build up. A remote attacker could send connection packets from a spoofed IP address and occupy all server slots, or even use them for a reflection attack using map download packets.
7.5
High
CVE-2016-9400 2017-02-22 15h00 +00:00 The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code via vectors involving snap handling.
9.8
Critical
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.