Created by: AMS21
The given buffers are actually not big enough for the size specified in the sscanf argument.
To quote cppreference
Always stores a null character in addition to the characters matched (so the argument array must have room for at least width+1 characters)
Full credit this was found by CodeQL
Original diagnostics:
src/xrGame/console_commands_mp.cpp:606: This 'sscanf string argument' operation requires 33 bytes but the destination is only 32 bytes. [cpp/very-likely-overrunning-write] src/xrGame/console_commands_mp.cpp:606: This 'sscanf string argument' operation requires 17 bytes but the destination is only 16 bytes. [cpp/very-likely-overrunning-write]