VYPR

Cardboard

by CardboardPowered

Source repositories

CVEs (3)

  • CVE-2026-24794CriJan 27, 2026
    risk 0.60cvss epss 0.00

    Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in CardboardPowered cardboard (src/main/java/org/cardboardpowered/impl/world modules). This vulnerability is associated with program files WorldImpl.Java. This issue affects cardboard: before…

  • CVE-2018-19111Nov 8, 2018
    risk 0.00cvss epss 0.00

    The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private cleartext information to the Unity 3D Stats web site, as demonstrated by device make, model, and OS.

  • CVE-2001-1584Dec 31, 2001
    risk 0.00cvss epss 0.02

    CardBoard 2.4 greeting card CGI by Michael Barretto allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient field.