CNNVD-202510-2274 Information

CNNVD ID

CNNVD-202510-2274

Related CVE

CVE-2017-20205

• CNNVD Published: 2025-10-15

Description (Chinese)

Source SDK是Valve Software开源的一个电脑游戏。 Source SDK存在安全漏洞，该漏洞源于ragdoll模型解析逻辑中存在基于栈的缓冲区溢出，可能导致远程代码执行。

Description (English)

Source SDK is an open-source computer game for Valve Software. Source SDK had a security loophole, which stemmed from the spill of a cage-based buffer zone in the model resolution logic of the Ragdoll model, which could lead to remote code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Valve Software

Published

2025-10-15

Last Modified

2026-02-24

References

https://github.com/ValveSoftware/source-sdk-2013 https://www.oneupsecurity.com/research/remote-code-execution-in-source-games/ https://www.vulncheck.com/advisories/valve-source-sdk-stack-based-buffer-overflow-rce