PT-2023-11809 · Alliedmodders · Amx Mod X

Published

2023-01-04

Updated

2024-06-10

CVE-2020-36639

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions AlliedModders AMX Mod X (affected versions not specified)

Description A critical vulnerability has been found in AlliedModders AMX Mod X on Windows. This issue affects the cmdVoteMap function of the plugins/adminvote.sma file, part of the Console Command Handler component. The manipulation of the amx votemap argument leads to path traversal.

Recommendations Apply a patch to fix this issue, identified as a5f2b5539f6d61050b68df8b22ebb343a2862681. As a temporary workaround, consider disabling the cmdVoteMap function until a patch is available. Restrict access to the plugins/adminvote.sma file to minimize the risk of exploitation. Avoid using the amx votemap argument in the affected Console Command Handler component until the issue is resolved.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2020-36639

Affected Products

Amx Mod X

PT-2023-11809 · Alliedmodders · Amx Mod X

CVE-2020-36639

Weakness Enumeration

Related Identifiers

Affected Products

References · 8