Valvesoftware » Steamos : Security Vulnerabilities, CVEs,
Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse Steam.exe file.
Max CVSS
4.8
EPSS Score
0.06%
Published
2017-01-23
Updated
2017-09-07
Valve Bug Reporter in the valve-bugreporter package 2.10+bsos1 in Valve SteamOS Beta stores cleartext credentials in a .valve-bugreporter.cfg file upon a Remember Credentials action, which allows local users to obtain sensitive information by reading this file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2013-12-17
Updated
2013-12-18
2 vulnerabilities found