CVE-2020-36639

A vulnerability has been found in AlliedModders AMX Mod X on Windows and classified as critical. This vulnerability affects the function cmdVoteMap of the file plugins/adminvote.sma of the component Console Command Handler. The manipulation of the argument amx_votemap leads to path traversal. The patch is identified as a5f2b5539f6d61050b68df8b22ebb343a2862681. It is recommended to apply a patch to fix this issue. VDB-217354 is the identifier assigned to this vulnerability.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:alliedmods:amx_mod_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:29

Type Values Removed Values Added
CVSS v2 : 4.7
v3 : 9.8
v2 : 4.7
v3 : 4.3
References () https://github.com/alliedmodders/amxmodx/commit/a5f2b5539f6d61050b68df8b22ebb343a2862681 - Patch () https://github.com/alliedmodders/amxmodx/commit/a5f2b5539f6d61050b68df8b22ebb343a2862681 - Patch
References () https://github.com/alliedmodders/amxmodx/pull/823 - Patch () https://github.com/alliedmodders/amxmodx/pull/823 - Patch
References () https://vuldb.com/?ctiid.217354 - Third Party Advisory () https://vuldb.com/?ctiid.217354 - Third Party Advisory
References () https://vuldb.com/?id.217354 - Third Party Advisory () https://vuldb.com/?id.217354 - Third Party Advisory

29 Feb 2024, 01:28

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en AlliedModders AMX Mod X en Windows y se clasificó como crítica. Esta vulnerabilidad afecta a la función cmdVoteMap del archivo plugins/adminvote.sma del componente Console Command Handler. La manipulación del argumento amx_votemap conduce a path traversal. El parche se identifica como a5f2b5539f6d61050b68df8b22ebb343a2862681. Se recomienda aplicar un parche para solucionar este problema. VDB-217354 es el identificador asignado a esta vulnerabilidad.

08 Dec 2023, 01:26

Type Values Removed Values Added
New CVE

Information

Published : 2023-01-04 10:15

Updated : 2024-11-21 05:29


NVD link : CVE-2020-36639

Mitre link : CVE-2020-36639

CVE.ORG link : CVE-2020-36639


JSON object : View

Products Affected

alliedmods

  • amx_mod_x

microsoft

  • windows
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')