CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

HackRead•added 2026/04/11 1:34 a.m.•1 views

ShinyHunters Claims Rockstar Games Snowflake Breach via Anodot

ShinyHunters claims access to Rockstar Games Snowflake data via Anodot breach, threatening a data leak on April 14 if ransom demands are not met...

5.8AI score

OSSF Malicious Packages•added 2026/02/06 11:10 a.m.•6 views

Malicious code in @rsgweb/rockstar-account (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd40e663999d2780e2e131fd5da090045d623032e6c51db70d0bd65cf583101d The package @rsgweb/rockstar-account was found to contain malicious code. Source: ghsa-malware...

5.4AI score

Exploits0References1

Snyk•added 2026/02/06 11:10 a.m.•1 views

Malicious Package

Overview @rsgweb/rockstar-account is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.4AI score

Exploits0References2

OSV•added 2026/02/06 11:10 a.m.•4 views

MAL-2026-799 Malicious code in @rsgweb/rockstar-account (npm)

5.6AI score

Exploits0References1

NVD•added 2026/01/21 6:16 p.m.•3 views

CVE-2021-47852

Rockstar Games Launcher 1.0.37.349 contains a privilege escalation vulnerability that allows authenticated users to modify the service executable with weak permissions. Attackers can replace the RockstarService.exe with a malicious binary to create a new administrator user and gain elevated syste...

8.8CVSS0.00041EPSS

EUVD•added 2026/01/21 5:27 p.m.•1 views

EUVD-2026-3623

ATTACKERKB•added 2026/01/21 5:27 p.m.•4 views

Exploits0References4

CVE-2021-47852

8.8CVSS5.4AI score0.00041EPSS

Exploits0References3Affected Software1

CVE•added 2026/01/21 5:27 p.m.•6 views

CVE-2021-47852

CVE-2021-47852 affects Rockstar Games Launcher 1.0.37.349. The issue is an insecure permission configuration on the RockstarService.exe binary, allowing authenticated users to replace it with a malicious binary, which yields a new administrator user and elevated system access. Root cause: weak pe...

Cvelist•added 2026/01/21 5:27 p.m.•16 views

CVE-2021-47852 Rockstar Service - Insecure File Permissions

8.8CVSS0.00041EPSS

Vulnrichment•added 2026/01/21 5:27 p.m.•1 views

CVE-2021-47852 Rockstar Service - Insecure File Permissions

CNNVD•added 2026/01/21 12:0 a.m.•4 views

Rockstar Games Launcher security vulnerability

Rockstar Games Launcher is a game launcher developed by Rockstar Games, Inc. Version 1.0.37.349 of Rockstar Games Launcher has a security vulnerability. This vulnerability stems from weak permissions for the service executable file, which may lead to an elevation of privileges...

8.8CVSS5.8AI score0.00041EPSS

Positive Technologies•added 2026/01/21 12:0 a.m.•2 views

PT-2026-3805

The Hacker News•added 2024/12/23 11:21 a.m.•5 views

Exploits0References4

Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service

An interruption to the phishing-as-a-service PhaaS toolkit called Rockstar 2FA has led to a rapid uptick in activity from another nascent offering named FlowerStorm. "It appears that the Rockstar2FA group running the service experienced at least a partial collapse of its infrastructure, with page...

7.2AI score

OSSF Malicious Packages•added 2024/06/25 1:31 p.m.•2 views

Malicious code in Rockstar.AssetManager.Infrastructure (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Talos Blog•added 2024/04/04 6:0 p.m.•25 views

There are plenty of ways to improve cybersecurity that don’t involve making workers return to a physical office

As my manager knows, Im not the biggest fan of working in a physical office. Im a picky worker -- I like my workspace to be borderline frigid, I hate dark mode on any software, and I want any and all lighting cranked all the way up. So, know that Im biased going into this, but I also cant get ove...

7.5CVSS7.7AI score0.85058EPSS

Exploits38

The Hacker News•added 2023/12/24 5:48 a.m.•33 views

British LAPSUS$ Teen Members Sentenced for High-Profile Attacks

Two British teens part of the LAPSUS$ cyber crime and extortion gang have been sentenced for their roles in orchestrating a string of high-profile attacks against a number of companies. Arion Kurtaj, an 18-year-old from Oxford, has been sentenced to an indefinite hospital order due to his intent ...

7.3AI score

Hacker One•added 2023/09/28 12:6 a.m.•19 views

Rockstar Games: Exposed CDN access token allows modification of all newly uploaded Snapmatic photos

A CDN access token was exposed that allowed modification of newly uploaded Snapmatic photos in GTA5. This provided a brief window to alter content after uploading. The issue was fixed by removing the exposed CDN fields...

6.9AI score

HackRead•added 2023/07/14 9:46 p.m.•16 views

Teenagers Face Trial for Hacking BT, Nvidia, Rockstar Games, Revolut, Uber

By Waqas Both teenagers, who are on trial in the United Kingdom, have been accused of being associated with the infamous Lapsus$ hacking group. This is a post from HackRead.com Read the original post: Teenagers Face Trial for Hacking BT, Nvidia, Rockstar Games, Revolut, Uber...

7.1AI score

Hacker One•added 2023/04/14 8:38 p.m.•8 views

Rockstar Games: Insecure Direct Object Reference allows Crew Invite deletion

An Insecure Direct Object Reference vulnerability was discovered in a service endpoint related to Crews management. This vulnerability allowed unauthorized users to delete outstanding Crew invitations from any Crew to any Social Club user. The vulnerability was resolved by implementing additional...

6.9AI score