Unrated severityNVD Advisory· Published Aug 21, 2019· Updated Aug 5, 2024
CVE-2019-15316
CVE-2019-15316
Description
Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY\SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to leverage a TOCTOU race condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Valve/Steam Clientdescription
- Range: <=2019-08-20
Patches
Vulnerability mechanics
References
4- amonitoring.ru/article/onemore_steam_eop_0day/mitrex_refsource_MISC
- habr.com/ru/company/pm/blog/464367/mitrex_refsource_MISC
- www.youtube.com/watchmitrex_refsource_MISC
- www.youtube.com/watchmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.