CNNVD-202601-4602 Information

CNNVD ID

CNNVD-202601-4602

Related CVE

CVE-2026-24798

• CNNVD Published: 2026-01-27

Description (Chinese)

DagorEngine是Gaijin Entertainment开源的一个来自游戏开发引擎和工具。 DagorEngine dagor_2025_01_15及之前版本存在安全漏洞，该漏洞源于miniupnpc组件upnpreplyparse.C存在内存缓冲区操作限制不当，可能导致内存损坏。

Description (English)

DagorEngine is a game development engine and tool that is an open source for Gaijin Enterprise. DagorEngine Dagor 2025 01 15 and previous versions have security loopholes, which stem from the presence of improper operating restrictions on the memory of the buffer zone in the Minupnpc componentupreplyparse.C, which may lead to damage to the memory.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Gaijin Entertainment

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/GaijinEntertainment/DagorEngine/pull/136

Patch

https://github.com/GaijinEntertainment/DagorEngine/releases