Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-31518

A heap use-after-free in the component CDataFileReader::GetItem of teeworlds v0.7.5 allows attackers to cause a Denial of Service (DoS) via a crafted map file.

Published

2023-05-23T20:15:09.947

Last Modified

2025-01-31T14:15:33.290

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-416
Type: Secondary
CWE-416

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	teeworlds	teeworlds	0.7.5	Yes

References

https://gist.github.com/manba-bryant/9ca95d69c65f4d2c55946932c946fb9b Third Party Advisory ([email protected])
https://github.com/teeworlds/teeworlds/issues/2970 Exploit, Issue Tracking ([email protected])
https://mmmds.pl/fuzzing-map-parser-part-1-teeworlds/ Exploit, Third Party Advisory ([email protected])
https://gist.github.com/manba-bryant/9ca95d69c65f4d2c55946932c946fb9b Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/teeworlds/teeworlds/issues/2970 Exploit, Issue Tracking (af854a3a-2127-422b-91ae-364da2661108)
https://mmmds.pl/fuzzing-map-parser-part-1-teeworlds/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)