Malicious Mod Found in BeamNG.drive Exploits 6-Year-Old Chromium Vulnerability
2025-05-01
While playing BeamNG.drive, the author discovered a malicious mod, "American Road," that triggered an antivirus alert. Analysis revealed obfuscated JavaScript and shellcode leveraging a six-year-old Chromium Embedded Framework vulnerability (CVE-2019-5825). This vulnerability allowed the mod to inject shellcode into memory, downloading and executing a DLL that steals passwords and personal information. The malicious code was disguised as a Patreon banner. The infected mod has been removed from the official repository, and the author's account suspended. Users are urged to remove the mod and scan their systems.
Read more