CVE-2017-20186

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in nikooo777 ckSurf up to 1.19.2. It has been declared as problematic. This vulnerability affects the function SpecListMenuDead of the file csgo/addons/sourcemod/scripting/ckSurf/misc.sp of the component Spectator List Name Handler. The manipulation of the argument cleanName leads to denial of service. Upgrading to version 1.21.0 is able to address this issue. The name of the patch is fd6318d99083a06363091441a0614bd2f21068e6. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-238156. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Configurations

Configuration 1 (hide)

cpe:2.3:a:nikooo777:cksurf:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:22

Type Values Removed Values Added
CVSS v2 : 2.7
v3 : 7.5
v2 : 2.7
v3 : 3.5
References () https://forums.alliedmods.net/showthread.php?t=297179 - Issue Tracking, Third Party Advisory () https://forums.alliedmods.net/showthread.php?t=297179 - Issue Tracking, Third Party Advisory
References () https://github.com/nikooo777/ckSurf/commit/fd6318d99083a06363091441a0614bd2f21068e6 - Patch () https://github.com/nikooo777/ckSurf/commit/fd6318d99083a06363091441a0614bd2f21068e6 - Patch
References () https://github.com/nikooo777/ckSurf/releases/tag/1.21.0 - Release Notes () https://github.com/nikooo777/ckSurf/releases/tag/1.21.0 - Release Notes
References () https://vuldb.com/?ctiid.238156 - Third Party Advisory () https://vuldb.com/?ctiid.238156 - Third Party Advisory
References () https://vuldb.com/?id.238156 - Third Party Advisory () https://vuldb.com/?id.238156 - Third Party Advisory

07 Nov 2023, 02:43

Type Values Removed Values Added
Summary ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in nikooo777 ckSurf up to 1.19.2. It has been declared as problematic. This vulnerability affects the function SpecListMenuDead of the file csgo/addons/sourcemod/scripting/ckSurf/misc.sp of the component Spectator List Name Handler. The manipulation of the argument cleanName leads to denial of service. Upgrading to version 1.21.0 is able to address this issue. The name of the patch is fd6318d99083a06363091441a0614bd2f21068e6. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-238156. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in nikooo777 ckSurf up to 1.19.2. It has been declared as problematic. This vulnerability affects the function SpecListMenuDead of the file csgo/addons/sourcemod/scripting/ckSurf/misc.sp of the component Spectator List Name Handler. The manipulation of the argument cleanName leads to denial of service. Upgrading to version 1.21.0 is able to address this issue. The name of the patch is fd6318d99083a06363091441a0614bd2f21068e6. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-238156. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

01 Sep 2023, 13:57

Type Values Removed Values Added
CPE cpe:2.3:a:nikooo777:cksurf:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
First Time Nikooo777 cksurf
Nikooo777
References (MISC) https://vuldb.com/?ctiid.238156 - (MISC) https://vuldb.com/?ctiid.238156 - Third Party Advisory
References (MISC) https://github.com/nikooo777/ckSurf/releases/tag/1.21.0 - (MISC) https://github.com/nikooo777/ckSurf/releases/tag/1.21.0 - Release Notes
References (MISC) https://forums.alliedmods.net/showthread.php?t=297179 - (MISC) https://forums.alliedmods.net/showthread.php?t=297179 - Issue Tracking, Third Party Advisory
References (MISC) https://github.com/nikooo777/ckSurf/commit/fd6318d99083a06363091441a0614bd2f21068e6 - (MISC) https://github.com/nikooo777/ckSurf/commit/fd6318d99083a06363091441a0614bd2f21068e6 - Patch
References (MISC) https://vuldb.com/?id.238156 - (MISC) https://vuldb.com/?id.238156 - Third Party Advisory

28 Aug 2023, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-28 13:15

Updated : 2024-11-21 03:22


NVD link : CVE-2017-20186

Mitre link : CVE-2017-20186

CVE.ORG link : CVE-2017-20186


JSON object : View

Products Affected

nikooo777

  • cksurf
CWE
CWE-404

Improper Resource Shutdown or Release