CVE-2026-2655

Low CVSS: 2.0

A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::str_less::operator of the file include/chaiscript/chaiscript_defines.hpp. The manipulation results in use after free. The attack requires a local approach. The attack requires a high level of complexity. The exploitability is regarded as difficult. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Chaiscript

Product

Chaiscript

CWE

CWE-119

Yayın Tarihi

2026-02-18 14:16:07

Güncelleme

2026-02-19 17:22:36

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Chaiscript LOW Chaiscript 2026

Referanslar

https://github.com/ChaiScript/ChaiScript/ https://github.com/ChaiScript/ChaiScript/issues/632 https://github.com/ChaiScript/ChaiScript/issues/632#issue-3827824936 https://vuldb.com/?ctiid.346453 https://vuldb.com/?id.346453 https://vuldb.com/?submit.752788 https://github.com/ChaiScript/ChaiScript/issues/632

Benzer Kayıtlar

Medium

CVE-2026-3384

A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::AST_No…

Medium

CVE-2026-3383

A weakness has been identified in ChaiScript up to 6.1.0. This affects the function chaiscript::Boxed_Number::go of the…

Medium

CVE-2026-3382

A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::Boxed_Nu…

Low

CVE-2026-2656

A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::bare_equal of the file…