Valvesoftware - Steam Client CVE

Filtered by vendor Valvesoftware Subscribe

Filtered by product Steam Client

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-7985	1 Valvesoftware	1 Steam Client	2022-02-07	7.2 HIGH	N/A
Valve Steam 2.10.91.91 uses weak permissions (Users: read and write) for the Install folder, which allows local users to gain privileges via a Trojan horse steam.exe file.
CVE-2015-4016	1 Valvesoftware	1 Steam Client	2022-02-07	5.0 MEDIUM	N/A
The client detection protocol in Valve Steam allows remote attackers to cause a denial of service (process crash) via a crafted response to a broadcast packet.

Vulnerabilities (CVE)