CVE-2019-10069

In Godot through 3.1, remote code execution is possible due to the deserialization policy not being applied correctly.
References
Link Resource
https://godotengine.org/news Vendor Advisory
https://github.com/godotengine/godot/pull/27398 Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:godotengine:godot:*:*:*:*:*:*:*:*
cpe:2.3:a:godotengine:godot:*:*:*:*:*:*:*:*

Information

Published : 2019-05-31 15:29

Updated : 2019-06-03 08:37


NVD link : CVE-2019-10069

Mitre link : CVE-2019-10069


JSON object : View

CWE
CWE-502

Deserialization of Untrusted Data

Advertisement

dedicated server usa

Products Affected

godotengine

  • godot