4067 matches found
CVE-2026-3389
A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstdrexnewnode in the library sqstdlib/sqstdrex.cpp. Executing a manipulation can lead to null pointer dereference. The attack can only be executed locally. The exploit has been publicly disclosed and m...
UBUNTU-CVE-2026-3389
A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstdrexnewnode in the library sqstdlib/sqstdrex.cpp. Executing a manipulation can lead to null pointer dereference. The attack can only be executed locally. The exploit has been publicly disclosed and m...
CVE-2026-3390
A vulnerability was identified in FascinatedBox lily up to 2.3. This issue affects the function patchlineend of the file src/lilybuilderror.c of the component Error Reporting. The manipulation leads to out-of-bounds read. The attack can only be performed from a local environment. The exploit is...
CVE-2026-3390 FascinatedBox lily Error Reporting lily_build_error.c patch_line_end out-of-bounds
A vulnerability was identified in FascinatedBox lily up to 2.3. This issue affects the function patchlineend of the file src/lilybuilderror.c of the component Error Reporting. The manipulation leads to out-of-bounds read. The attack can only be performed from a local environment. The exploit is...
CVE-2026-3390
CVE-2026-3390 affects FascinatedBox lily up to 2.3, specifically the function patch_line_end in src/lily_build_error.c within the Error Reporting component. The issue enables an out-of-bounds read via input manipulation. Exploitation is local (AV:L, PR:L/LOW) and a publicly available exploit exis...
CVE-2026-3390 FascinatedBox lily Error Reporting lily_build_error.c patch_line_end out-of-bounds
A vulnerability was identified in FascinatedBox lily up to 2.3. This issue affects the function patchlineend of the file src/lilybuilderror.c of the component Error Reporting. The manipulation leads to out-of-bounds read. The attack can only be performed from a local environment. The exploit is...
CVE-2026-3389 Squirrel sqstdrex.cpp sqstd_rex_newnode null pointer dereference
A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstdrexnewnode in the library sqstdlib/sqstdrex.cpp. Executing a manipulation can lead to null pointer dereference. The attack can only be executed locally. The exploit has been publicly disclosed and m...
CVE-2026-3389 Squirrel sqstdrex.cpp sqstd_rex_newnode null pointer dereference
A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstdrexnewnode in the library sqstdlib/sqstdrex.cpp. Executing a manipulation can lead to null pointer dereference. The attack can only be executed locally. The exploit has been publicly disclosed and m...
CVE-2026-3389
CVE-2026-3389 affects Squirrel up to version 3.2. The vulnerability targets sqstd_rex_newnode in sqstdlib/sqstdrex.cpp, leading to a null pointer dereference when manipulated. Exploitation is local, and a public disclosure indicates potential use in the wild. The project was informed early via an...
CVE-2026-3386
The CVE-2026-3386 affects wren-lang Wren up to version 0.4.0. Affects the function emitOp in src/vm/wren_compiler.c, enabling an out-of-bounds read. Exploitation is possible on the local host; an exploit has been published. The project was informed of the issue early via an issue report but has n...
CVE-2026-3385 wren-lang wren wren_compiler.c resolveLocal recursion
A vulnerability was detected in wren-lang wren up to 0.4.0. Affected is the function resolveLocal of the file src/vm/wrencompiler.c. The manipulation results in uncontrolled recursion. Attacking locally is a requirement. The exploit is now public and may be used. The project was informed of the...
CVE-2026-3385 wren-lang wren wren_compiler.c resolveLocal recursion
A vulnerability was detected in wren-lang wren up to 0.4.0. Affected is the function resolveLocal of the file src/vm/wrencompiler.c. The manipulation results in uncontrolled recursion. Attacking locally is a requirement. The exploit is now public and may be used. The project was informed of the...
CVE-2026-3384
A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::ASTNodeImpl::eval/chaiscript::eval::FunctionPushPop of the file include/chaiscript/language/chaiscripteval.hpp. The manipulation leads to uncontrolled recursion. An attack has to be...
CVE-2026-3384
A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::ASTNodeImpl::eval/chaiscript::eval::FunctionPushPop of the file include/chaiscript/language/chaiscripteval.hpp. The manipulation leads to uncontrolled recursion. An attack has to be...
CVE-2026-3384 ChaiScript chaiscript_eval.hpp Function_Push_Pop recursion
A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::ASTNodeImpl::eval/chaiscript::eval::FunctionPushPop of the file include/chaiscript/language/chaiscripteval.hpp. The manipulation leads to uncontrolled recursion. An attack has to be...
CVE-2026-3382
A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::BoxedNumber::getas of the file include/chaiscript/dispatchkit/boxednumber.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit...
CVE-2026-3382
A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::BoxedNumber::getas of the file include/chaiscript/dispatchkit/boxednumber.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit...
CVE-2026-3382 ChaiScript boxed_number.hpp get_as memory corruption
A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::BoxedNumber::getas of the file include/chaiscript/dispatchkit/boxednumber.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit...
CVE-2026-3382
A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::BoxedNumber::getas of the file include/chaiscript/dispatchkit/boxednumber.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit...
PT-2026-22515
Name of the Vulnerable Software and Affected Versions jarikomppa soloud versions prior to 20200208 Description A heap-based buffer overflow exists in the SoLoud::Wav::loadflac function within the src/audiosource/wav/soloud wav.cpp file of the Audio File Handler component. This issue affects the...