CVE-2026-2641

Medium CVSS: 4.8

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on the local host. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Product

CWE

CWE-404

Yayın Tarihi

2026-02-18 06:16:35

Güncelleme

2026-02-18 17:51:53

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-404 MEDIUM 2026

Referanslar

https://github.com/oneafter/0116/blob/main/poc.v https://github.com/universal-ctags/ctags/ https://github.com/universal-ctags/ctags/issues/4369 https://vuldb.com/?ctiid.346397 https://vuldb.com/?id.346397 https://vuldb.com/?submit.752768