![]() ![]() Splatoon 3 (fixed in late 2022, exact version unknown).Animal Crossing: New Horizons (fixed in v2.0.6).Here's a list of affected titles, as per the GitHub page: It seems most high-profile Switch titles have already been fixed, but it looks like Mario Kart 8 and Splatoon on Wii U have yet to be addressed and may still be affected by the vulnerability. The vulnerability was reported to Nintendo in "2021/2022" by - who says they received a $1000 "bounty" via Nintendo's HackerOne program - and it is now understood that the company has taken action to fix the issue in some of the affected games, including Mario Kart 7, which was recently updated after more than a decade. This means that attackers may gain access to sensitive information or take audio and video recordings by remotely executing code. The vulnerability, which has been categorised as 'Critical' on the Common Vulnerability Scoring System (CVSS) and detailed in full on GitHub by PabloMK7, Rambo6Glaz, and Fishguy6564, reportedly exposes a victim's device to complete remote control by simply playing an online game with a potential attacker. It's reported that for some time Nintendo has been working to patch games to eliminate the exploit known as 'ENLBufferPwn', with several updates already live to address the situation (thanks, Nintendo Everything). Original Article :Ī severe vulnerability affecting several Nintendo consoles was found recently, with the potential to allow unauthorised access to Switch, 3DS, and Wii U via a host of online games.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |