← Back

Ogre3d

ogre3d

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Ogre
ogre
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-11017
1Ogre3d
1Ogre
Apr 29, 2026
Sep 26, 2025
1.9 LOW· v4
5.5 MEDIUM· v3
1.7 LOW· v2
A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaul...Show more
A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a local position. The exploit is now public and may be used.Show less
CVE-2025-11014
1Ogre3d
1Ogre
Apr 29, 2026
Sep 26, 2025
1.9 LOW· v4
7.8 HIGH· v3
4.3 MEDIUM· v2
A security flaw has been discovered in OGRECave Ogre up to 14.4.1. This issue affects the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp of the component Image Handler. The mani...Show more
A security flaw has been discovered in OGRECave Ogre up to 14.4.1. This issue affects the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp of the component Image Handler. The manipulation results in heap-based buffer overflow. The attack is only possible with local access. The exploit has been released to the public and may be exploited.Show less