CVE-2021-32795

{"id": "CVE-2021-32795", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.2, "exploitabilityScore": 2.2}]}, "published": "2021-07-26T20:15:08.527", "references": [{"url": "https://github.com/JustArchiNET/ArchiSteamFarm/commit/4cd581ec041912cf199c5512fe6d1dcaec0594c0", "tags": ["Patch", "Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/JustArchiNET/ArchiSteamFarm/security/advisories/GHSA-5v34-4prm-9474", "tags": ["Exploit", "Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://steamcommunity.com/groups/archiasf/discussions/1/2935742047969570844/", "tags": ["Exploit", "Third Party Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "ArchiSteamFarm is a C# application with primary purpose of idling Steam cards from multiple accounts simultaneously. In versions prior to 4.3.1.0 a Denial of Service (aka DoS) vulnerability which allows attacker to remotely crash running ASF instance through sending a specifically-crafted Steam chat message exists. The user sending the message does not need to be authorized within the bot or ASF process. The attacker needs to know ASF's `CommandPrefix` in advance, but majority of ASF setups run with an unchanged default value. This attack does not allow attacker to gain any potentially-sensitive information, such as logins or passwords, does not allow to execute arbitrary commands and otherwise exploit the crash further. The issue is patched in ASF V4.3.1.0. The only workaround which guarantees complete protection is running all bots with `OnlineStatus` of `0` (Offline). In this setup, ASF is able to ignore even the specifically-crafted message without attempting to interpret it."}, {"lang": "es", "value": "ArchiSteamFarm es una aplicaci\u00f3n C# con el prop\u00f3sito principal de ralentizar las tarjetas de Steam de m\u00faltiples cuentas simult\u00e1neamente. En las versiones anteriores a 4.3.1.0 se presenta una vulnerabilidad de denegaci\u00f3n de servicio (tambi\u00e9n se conoce como DoS) que permite a un atacante bloquear remotamente una instancia de ASF en ejecuci\u00f3n mediante el env\u00edo de un mensaje de chat de Steam espec\u00edficamente dise\u00f1ado. El usuario que env\u00eda el mensaje no necesita estar autorizado dentro del proceso del bot o del ASF. El atacante necesita conocer el \"CommandPrefix\" de ASF de antemano, pero la mayor\u00eda de las configuraciones de ASF se ejecutan con un valor predeterminado sin cambios. Este ataque no permite al atacante obtener ninguna informaci\u00f3n potencialmente confidencial, como inicios de sesi\u00f3n o contrase\u00f1as, no permite ejecutar comandos arbitrarios y de otra manera explotar el bloqueo m\u00e1s. El problema est\u00e1 parcheado en ASF versi\u00f3n V4.3.1.0. La \u00fanica soluci\u00f3n que garantiza una protecci\u00f3n completa es ejecutar todos los bots con \"OnlineStatus\" de \"0\" (Offline). En esta configuraci\u00f3n, ASF es capaz de ignorar incluso el mensaje espec\u00edficamente dise\u00f1ado sin intentar interpretarlo"}], "lastModified": "2021-08-13T18:23:52.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:archisteamfarm_project:archisteamfarm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2ACD67C-272F-4186-A024-EE8451D456F4", "versionEndExcluding": "4.3.1.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}