CVE-2026-1990

A security vulnerability has been detected in oatpp up to 1.3.1. This impacts the function oatpp::data::type::ObjectWrapper::ObjectWrapper of the file src/oatpp/data/type/Type.hpp. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit ha...

CVE-2026-1990

The CVE-2026-1990 vulnerability affects oatpp up to 1.3.1, specifically the ObjectWrapper constructor in src/oatpp/data/type/Type.hpp. It causes a null pointer dereference and requires local access to exploit. Public disclosure of the exploit is noted; vendors have been informed but responses var...

EUVD-2026-5584

A security vulnerability has been detected in oatpp up to 1.3.1. This impacts the function oatpp::data::type::ObjectWrapper::ObjectWrapper of the file src/oatpp/data/type/Type.hpp. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit ha...

CVE-2025-6566 oatpp Oat++ Deserializer.cpp deserializeArray stack-based overflow

A vulnerability was found in oatpp Oat++ up to 1.3.1. It has been declared as critical. This vulnerability affects the function deserializeArray of the file src/oatpp/json/Deserializer.cpp. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit ha...

PT-2025-26735 · Oatpp · Oatpp

Name of the Vulnerable Software and Affected Versions: oatpp Oat++ versions up to 1.3.1 Description: A critical vulnerability has been found, affecting the deserializeArray function in the file src/oatpp/json/Deserializer.cpp. This issue leads to a stack-based buffer overflow and can be initiated...

PT-2025-5663 · Oatpp · Oatpp

Name of the Vulnerable Software and Affected Versions: oatpp affected versions not specified Description: The issue is related to a heap-buffer-overflow error. Technical details about the error include the escapeString function, serializeString function, and serializePairs function...