americasarmy CVE Vulnerabilities & CVE List (4)

Products (CPE): — CVEs: 4

americasarmy vulnerability overview

Aggregates CVE and security vulnerability intelligence across all americasarmy-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk input validation and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact unexpected behavior and vendor impact application crash.

Vulnerability distribution trend (last 24 months)

Showing 14 of 4 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2018-10531 An issue was discovered in the America's Army Proving Grounds platform for the Unreal Engine. With a false packet sent via UDP, the application server responds with several bytes, giving the possibility of DoS amplification, even being able to be used in DDoS attacks. [email protected] 7.5 1.43% 2019-07-10 2026-06-16
CVE-2008-3492 America's Army (aka AA or Army Game Project) 2.8.3.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted UDP packet, probably involving a VoiceIndex value that is outside of the range specified by VOICE_MAX_CHATTERS. [email protected] 5.0 1.72% 2008-08-06 2026-06-16
CVE-2007-5250 The Windows dedicated server for the Unreal engine, as used by America's Army and America's Army Special Forces 2.8.2 and earlier, when Punkbuster (PB) is enabled, allows remote attackers to cause a denial of service (server hang) via packets containing 0x07 characters or other unspecified invalid characters. NOTE: this issue may overlap CVE-2007-4443. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain. [email protected] 4.3 1.50% 2007-10-06 2026-06-16
CVE-2007-5249 Multiple buffer overflows in the logging function in the Unreal engine, as used by America's Army and America's Army Special Forces 2.8.2 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to cause a denial of service (daemon crash) via a long (1) PB_Y packet to the YPG server on UDP port 1716 or (2) PB_U packet to UCON on UDP port 1716, different vectors than CVE-2007-4442. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain. [email protected] 4.3 1.65% 2007-10-06 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence