CVE-2023-35855: Buffer Overflow
First published: Mon Jun 19 2023(Updated: )
A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a remote client's machine by modifying the lservercfgfile console variable.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Counter-Strike 2 | <=8684 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-35855?
The severity of CVE-2023-35855 is critical.
How does CVE-2023-35855 exploit a buffer overflow?
CVE-2023-35855 exploits a buffer overflow in Counter-Strike by modifying the lservercfgfile console variable.
Can CVE-2023-35855 allow a game server to execute arbitrary code on a remote client's machine?
Yes, CVE-2023-35855 allows a game server to execute arbitrary code on a remote client's machine.
Which version of Counter-Strike is affected by CVE-2023-35855?
CVE-2023-35855 affects all versions up to and including 8684 of Counter-Strike.
Is there a fix available for CVE-2023-35855?
It is recommended to update to a version of Counter-Strike that is not affected by CVE-2023-35855.
- agent/type
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/valvesoftware
- canonical/counter-strike 2
- version/counter-strike 2/8684