Epic Games Unreal Engine — known CVE vulnerabilities
Every CVE whose affected-product data names Epic Games Unreal Engine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2004-0608 — CVSS 10.0 (critical): The Unreal Engine, as used in DeusEx 1.112fm and earlier, Devastation 390 and earlier, Mobile Forces 20000 and earlier, Nerf Arena Blast…
CVE-2003-1432 — CVSS 10.0 (critical): Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly…
CVE-2003-1431 — CVSS 7.1 (high): Buffer overflow in Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (crash) via a long host…
CVE-2007-4443 — CVSS 5.0 (medium): The UCC dedicated server for the Unreal engine, possibly 2003 and 2004, on Windows allows remote attackers to cause a denial of service…
CVE-2003-1430 — CVSS 5.0 (medium): Directory traversal vulnerability in Unreal Tournament Server 436 and earlier allows remote attackers to access known files via a ".." (dot…
CVE-2004-1805 — CVSS 5.0 (medium): Format string vulnerability in games using the Epic Games Unreal Engine 436 allows remote attackers to cause a denial of service (crash)…
CVE-2004-1958 — CVSS 5.0 (medium): Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot)…
CVE-2007-4442 — CVSS 5.0 (medium): Stack-based buffer overflow in the logging function in the Unreal engine, possibly 2003 and 2004, as used in the internal web server…
CVE-2003-1433 — CVSS 4.3 (medium): Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows remote attackers to exhaust the player limit by…