Vulnerabilities (CVE)

Filtered by vendor Doom Vanille Project Subscribe
Filtered by product Doom Vanille
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-15007 2 Doom Vanille Project, Idsoftware 2 Doom Vanille, Tech 1 2024-11-21 7.5 HIGH 9.8 CRITICAL
A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in a format argument.