2 matches found
CVE-2019-10069
CVE-2019-10069 affects the Godot game engine (up to 3.1). The root cause is failure to properly apply a deserialization policy, enabling remote code execution over the network. The NVD metrics assign a high/critical severity (CVSS2: 7.5 HIGH with network access; CVSS3: 9.8 CRITICAL with network a...
CVE-2018-1000224
The CVE-2018-1000224 issue affects Godot Engine: vulnerable in (De)Serialization paths in core/io/marshalls.cpp across all versions earlier than 2.1.5 and 3.0 before 3.0.6. It exposes a Signed/unsigned comparison, wrong buffer size checks, integer overflow, and missing padding initialization, ena...