← Back

Crysis

crysis

Vendor: Ea • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2008-6737
1Ea
1Crysis
Apr 23, 2026
Apr 21, 2009
N/A· v4
N/A· v3
7.8 HIGH· v2
Crysis 1.21 and earlier allows remote attackers to obtain sensitive player information such as real IP addresses by sending a keyexchange packet without a previous join packet, which causes Crysis to send a disconnect pa...Show more
Crysis 1.21 and earlier allows remote attackers to obtain sensitive player information such as real IP addresses by sending a keyexchange packet without a previous join packet, which causes Crysis to send a disconnect packet that includes unrelated log information.Show less
CVE-2008-6712
1Ea
1Crysis
Apr 23, 2026
Apr 10, 2009
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The HTTP/XML-RPC service in Crysis 1.21 (game version 1.1.1.6156) and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request, which triggers a NULL pointer dereference.