5 matches found
CVE-2022-23627
ArchiSteamFarm ASF is a C application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code, introduced in version V5.2.2.2, the program didn't adequately verify effective access of the user sending proxy i.e. Bots commands. In particular, a...
CVE-2022-23627
creationtimestamp| type| source ---|---|--- 2022-02-09 02:12:16+00:00| seen| https://t.me/cibsecurity/37039...
CVE-2022-23627 Inadequate access verification when using proxy commands in ArchiSteamFarm
ArchiSteamFarm ASF is a C application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code, introduced in version V5.2.2.2, the program didn't adequately verify effective access of the user sending proxy i.e. Bots commands. In particular, a...
CVE-2022-23627 Inadequate access verification when using proxy commands in ArchiSteamFarm
ArchiSteamFarm ASF is a C application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code, introduced in version V5.2.2.2, the program didn't adequately verify effective access of the user sending proxy i.e. Bots commands. In particular, a...
CVE-2022-23627
CVE-2022-23627 concerns ArchiSteamFarm (ASF). A bug in ASF v5.2.2.2 fails to properly verify the user’s access when issuing proxy commands between bots (A vs B), allowing access to resources beyond what was configured if an attacker already controls at least one bot in the process. The issue impa...