6 matches found
CVE-2024-23168
Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution...
CVE-2024-23168
Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution...
CVE-2024-23168
Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution...
CVE-2024-23168
CVE-2024-23168 affects Xiexe XSOverlay (desktop overlay for OpenVR) prior to build 647. The issue arises from handling commands sent via the WebSocket API by non-local websites, enabling arbitrary code execution. Documented impact is high (CVSS 3.1: 9.8; Confidentiality, Integrity, Availability: ...
CVE-2024-23168
Vulnerability in Xiexe XSOverlay before build 647 allows non-local websites to send the malicious commands to the WebSocket API, resulting in the arbitrary code execution...
XSOverlay 安全漏洞
XSOverlay is a desktop overlay application for OpenVR by the individual developer Xiexe. A security vulnerability exists in XSOverlay that originates from sending malicious commands to the WebSocket API and can lead to arbitrary code execution...