Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Overwolf Subscribe
Filtered by product Overwolf
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-20726 1 Overwolf 1 Overwolf 2022-05-03 4.4 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory.
CVE-2021-33501 1 Overwolf 1 Overwolf 2021-07-29 9.3 HIGH 9.6 CRITICAL
Overwolf Client 0.169.0.22 allows XSS, with resultant Remote Code Execution, via an overwolfstore:// URL.
CVE-2020-25214 1 Overwolf 1 Overwolf 2020-10-28 9.3 HIGH 8.1 HIGH
In the client in Overwolf 0.149.2.30, a channel can be accessed or influenced by an actor that is not an endpoint.
CVE-2020-15932 1 Overwolf 1 Overwolf 2020-08-05 9.0 HIGH 8.8 HIGH
Overwolf before 0.149.2.30 mishandles Symbolic Links during updates, causing elevation of privileges.