PT-2022-20653 · Wargaming · World Of Warships

Published

2022-05-26

Updated

2022-06-08

CVE-2022-31265

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions World of Warships version 0.11.4

Description The replay feature in the client allows remote attackers to execute code when a user launches a replay from an untrusted source.

Recommendations For version 0.11.4, consider disabling the replay feature until a patch is available to prevent remote code execution. Restrict the launch of replays from untrusted sources to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-294

Related Identifiers

CVE-2022-31265

Affected Products

World Of Warships

PT-2022-20653 · Wargaming · World Of Warships

CVE-2022-31265

Weakness Enumeration

Related Identifiers

Affected Products

References · 4