← Back

Doom Vanille

doom_vanille

Vendor: Doom Vanille Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-15007
2Doom Vanille Project
Idsoftware
2Doom Vanille
Tech 1
Jun 17, 2026
Jun 24, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in...Show more
A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in a format argument.Show less