1. CVE-Search
  2. CVE-2020-25214
ID CVE-2020-25214
Summary In the client in Overwolf 0.149.2.30, a channel can be accessed or influenced by an actor that is not an endpoint.
References
Vulnerable Configurations
  • cpe:2.3:a:overwolf:overwolf:0.149.2.30:*:*:*:*:*:*:*
    cpe:2.3:a:overwolf:overwolf:0.149.2.30:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 28-10-2020 - 17:51)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
misc https://github.com/immunityinc/Advisories/blob/master/2020/CVE-2020-25214.pdf
Last major update 28-10-2020 - 17:51
Published 16-10-2020 - 20:15
Last modified 28-10-2020 - 17:51
Back to Top