CVE-2026-24794

Critical CVSS: 9.2

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in CardboardPowered cardboard (src/main/java/org/cardboardpowered/impl/world modules). This vulnerability is associated with program files WorldImpl.Java.

This issue affects cardboard: before 1.21.4.

Vendor

Product

CWE

CWE-119

Yayın Tarihi

2026-01-27 09:15:49

Güncelleme

2026-01-27 14:59:34

Source Identifier

cve_disclosure@tech.gov.sg

KEV Date Added

Kategoriler

CWE-119 CRITICAL 2026

Referanslar

https://github.com/CardboardPowered/cardboard/pull/506