Escaping of Characters Vulnerability in NetHack (pre-3.6.0)

Escaping of Characters Vulnerability in NetHack (pre-3.6.0)

CVE-2020-5253 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0.

Learn more about our Api Penetration Testing.