VYPR

Godot

by Godot Engine

Source repositories

CVEs (2)

  • CVE-2018-1000224HigAug 20, 2018
    risk 0.49cvss 7.5epss 0.04

    Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization vulnerability in (De)Serialization functions (core/io/marshalls.cpp) that can…

  • CVE-2019-10069May 31, 2019
    risk 0.00cvss epss 0.03

    In Godot through 3.1, remote code execution is possible due to the deserialization policy not being applied correctly.