VYPR
← All advisories
Critical severityNVD Advisory· Published Jan 27, 2026· Updated Apr 15, 2026

CVE-2026-24794

CVE-2026-24794

Description

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in CardboardPowered cardboard (src/main/java/org/cardboardpowered/impl/world modules). This vulnerability is associated with program files WorldImpl.Java.

This issue affects cardboard: before 1.21.4.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.