PT-2026-33221

Creolabs Gravity before 0.9.6 contains a heap buffer overflow vulnerability in the gravity vm exec function that allows attackers to write out-of-bounds memory by crafting scripts with many string literals at global scope. Attackers can exploit insufficient bounds checking in gravity fiber reassi...

EUVD-2021-19136

Malware in sbrugna...

EUVD-2021-19139

Malware in sbrugna...

EUVD-2021-19140

Malware in sbrugna...

CVE-2021-32285

An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function listiteratornext located in gravitycore.c. It allows an attacker to cause Denial of Service...

CVE-2021-32283

An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function gravitystringtovalue located in gravityvalue.c. It allows an attacker to cause Denial of Service...

CVE-2021-32281

An issue was discovered in gravity through 0.8.1. A heap-buffer-overflow exists in the function gnodefunctionaddupvalue located in gravityast.c. It allows an attacker to cause code Execution...

Creolabs Gravity Memory Misreference Vulnerability

Creolabs Gravity is an open source lightweight embedded programming language from Creolabs, Italy. The language supports procedural programming, object-oriented programming, functional programming and data-driven programming. A memory misreference vulnerability exists in Creolabs Gravity version...