A severe vulnerability (CVE-2022-47949) has been found in the network code of many first party Nintendo games since the 3DS. Combined with other techniques, it allows remote code execution in the victim’s console by just having an online game session with the attacker, including full console takeover (as demonstrated with Mario Kart 7 in the vulnerability report). Using the vulnerability, it is theoretically possible to do other malicious activities, such as **stealing account/credit card information** or **taking unauthorized audio/video recordings using the console built-in mic/cameras**.
Here is a list of games that are known to have had the vulnerability at some point (all the Switch and 3DS games listed have received updates that patch the vulnerability, so they are no longer affected):
* Mario Kart 7 (fixed in v1.2)
* Mario Kart 8 (still not fixed)
* Mario Kart 8 Deluxe (fixed in v2.1.0)
* Animal Crossing: New Horizons (fixed in v2.0.6)
* ARMS (fixed in v5.4.1)
* Splatoon (still not fixed)
* Splatoon 2 (fixed in v5.5.1)
* Splatoon 3 (fixed in late 2022, exact version unknown)
* Super Mario Maker 2 (fixed in v3.0.2)
* Nintendo Switch Sports (fixed in late 2022, exact version unknown)
* *Probably more…*
The vulnerability report, including proof of concept videos can be found here: [https://github.com/PabloMK7/ENLBufferPwn](https://github.com/PabloMK7/ENLBufferPwn)
by PabloMK7
11 Comments
I’ve seen some good Nintendo exploits, but that one’s a real winner. Wow.
well I guess that explains the mystery update MK7 got last week out of nowhere
Well at least all switch games seem to be fixed. It is kind of concerning that the WIiU games aren’t though but that is kind what you expect since the focus is the switch now.
Huh, I bet this will be a new avenue for people to mod their OLED Switch.
Safe to assume any first party multiplayer game that has taken an update in the last six weeks had this vulnerability.
When does Nintendo maybe start fixing their online? Absolutely no reason this exploit should exist
People really need to stop using creditcards if they care about keeping their money safe. Especially American cc users cause their cc’s are even worse
Ok question. A: What do all those letters and numbers mean. And B: *How do people even find this?!?*
Hello, out of curiosity, how did you discover this?
ARMS!?! Nooooo /s
I know this is a serious security breach, but can this potentially be used to run homebrew in patched Nintendo Switch consoles?