CVE-2019-11354

 

Published at: - 20-04-2019 12:29

Last modified: - 18-04-2022 07:08

Total changes: - 3

Description

The client in Electronic Arts (EA) Origin 10.5.36 on Windows allows template injection in the title parameter of the Origin2 URI handler. This can be used to escape the underlying AngularJS sandbox and achieve remote code execution via an origin2://game/launch URL for QtApplication QDesktopServices communication.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://www.vg247.com/2019/04/17/ea-origin-security-flaw-run-malicious-code-fixed/
• https://www.trustedreviews.com/news/time-update-origin-eas-game-client-security-risk-just-installed-3697942
• https://www.thesun.co.uk/tech/8877334/sims-4-battlefield-fifa-origin-hackers/
• https://www.techradar.com/news/major-security-flaw-found-in-ea-origin-gaming-client
• https://www.pcmag.com/news/367801/security-flaw-allowed-any-app-to-run-using-eas-origin-clien
• https://www.golem.de/news/sicherheitsluecke-ea-origin-fuehrte-schadcode-per-link-aus-1904-140738.html
• https://techcrunch.com/2019/04/16/ea-origin-bug-exposed-hackers/
• https://gizmodo.com/ea-origin-users-update-your-client-now-1834079604
• https://blog.underdogsecurity.com/rce_in_origin_client/
• http://gamasutra.com/view/news/340907/A_nowfixed_Origin_vulnerability_potentially_opened_the_client_to_hackers.php
• http://packetstormsecurity.com/files/153375/dotProject-2.1.9-SQL-Injection.html
• http://packetstormsecurity.com/files/153485/EA-Origin-Template-Injection-Remote-Code-Execution.html

 

Keywords

NVD

 

CVE-2019-11354

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures