Lucene search
K

4 matches found

NVD
NVD
added 2026/01/07 9:16 p.m.8 views

CVE-2026-22190

The egg-mkfont utility in Panda3D versions up to and including 1.10.16 contains an uncontrolled format string vulnerability. The -gp glyph pattern command-line option is used directly as the format string for sprintf with only a single argument supplied. If an attacker provides additional format...

7.5CVSS0.00312EPSS
Exploits1References4
OSV
OSV
added 2026/01/07 8:25 p.m.4 views

CVE-2026-22190 Panda3D <= 1.10.16 egg-mkfont Format String Information Disclosure

The egg-mkfont utility in Panda3D versions up to and including 1.10.16 contains an uncontrolled format string vulnerability. The -gp glyph pattern command-line option is used directly as the format string for sprintf with only a single argument supplied. If an attacker provides additional format...

5.1CVSS5.9AI score0.00312EPSS
Exploits1References6
CVE
CVE
added 2026/01/07 8:25 p.m.16 views

CVE-2026-22190

Summary of CVE-2026-22190 (Panda3D) Affected: Panda3D up to and including 1.10.16, specifically the egg-mkfont utility. Vulnerability: Uncontrolled format string in the -gp (glyph pattern) option. The option is passed directly as the format string to sprintf() with only one argument. If an attack...

7.5CVSS5.7AI score0.00312EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/01/07 8:25 p.m.36 views

CVE-2026-22190 Panda3D <= 1.10.16 egg-mkfont Format String Information Disclosure

The egg-mkfont utility in Panda3D versions up to and including 1.10.16 contains an uncontrolled format string vulnerability. The -gp glyph pattern command-line option is used directly as the format string for sprintf with only a single argument supplied. If an attacker provides additional format...

5.1CVSS0.00312EPSS
Exploits1References4
Rows per page
Query Builder