Description
A vulnerability was found in Forged Alliance Forever up to 3746. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Vote Handler. The manipulation leads to improper authorization. Upgrading to version 3747 is able to address this issue. The patch is named 6880971bd3d73d942384aff62d53058c206ce644. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-217555.
References (5)
Core 5
Core References
Third Party Advisory vdb-entry
technical-description
https://vuldb.com/?id.217555
Permissions Required signature
permissions-required
https://vuldb.com/?ctiid.217555
Patch issue-tracking
https://github.com/FAForever/fa/pull/4398
Release Notes patch
https://github.com/FAForever/fa/releases/tag/3747
Scores
CVSS v3
4.6
EPSS
0.0053
EPSS Percentile
40.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-285
Status
published
Products (1)
forged_alliance_forever_project/forged_alliance_forever
< 3747
Published
Jan 06, 2023
Tracked Since
Feb 18, 2026