VYPR
Vendor

Nintendo

Products
12
CVEs
8
Across products
16
Status
Private

Products

12

Recent CVEs

8
  • CVE-2022-47949CriDec 24, 2022
    risk 0.65cvss 9.8epss 0.17

    The Nintendo NetworkBuffer class, as used in Animal Crossing: New Horizons before 2.0.6 and other products, allows remote attackers to execute arbitrary code via a large UDP packet that causes a buffer overflow, aka ENLBufferPwn. The victim must join a game session with the…

  • CVE-2023-35856CriJun 19, 2023
    risk 0.64cvss 9.8epss 0.01

    A buffer overflow in Nintendo Mario Kart Wii RMCP01, RMCE01, RMCJ01, and RMCK01 can be exploited by a game client to execute arbitrary code on a client's machine via a crafted packet.

  • CVE-2024-34454HigMay 26, 2024
    risk 0.48cvss 7.4epss 0.00

    Nintendo Wii U OS 5.5.5 allows man-in-the-middle attackers to forge SSL certificates as though they came from a Root CA, because there is a secondary verification mechanism that only checks whether a CA is known and ignores the CA details and signature (and because * is accepted…

  • CVE-2022-36381HigAug 16, 2022
    risk 0.47cvss 7.2epss 0.01

    OS command injection vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.

  • CVE-2022-36293HigAug 16, 2022
    risk 0.47cvss 7.2epss 0.01

    Buffer overflow vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary code via unspecified vectors.

  • CVE-2018-25109MedMar 23, 2025
    risk 0.42cvss 6.4epss 0.00

    A vulnerability has been found in Nintendo Animal Crossing, Doubutsu no Mori+ and Doubutsu no Mori e+ 1.00/1.01 on GameCube and classified as critical. Affected by this vulnerability is an unknown functionality of the component Letter Trigram Handler. The manipulation leads to…

  • CVE-2024-45200MedSep 30, 2024
    risk 0.41cvss 6.3epss 0.01

    In Nintendo Mario Kart 8 Deluxe before 3.0.3, the LAN/LDN local multiplayer implementation allows a remote attacker to exploit a stack-based buffer overflow upon deserialization of session information via a malformed browse-reply packet, aka KartLANPwn. The victim is not…

  • CVE-2022-3216MedSep 14, 2022
    risk 0.33cvss 5.0epss 0.01

    A vulnerability has been found in Nintendo Game Boy Color and classified as problematic. This vulnerability affects unknown code of the component Mobile Adapter GB. The manipulation leads to memory corruption. The attack can be initiated remotely. The exploit has been disclosed…