The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.
Path Traversal
NVD
CVSS 4.0
2.4
EPSS
0.2%