CVE-2026-3285 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the function scan_string of the file src/be_lexer.c. This manipulation c…
Low CVSS: 1.9

CVE-2026-3285

A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the function scan_string of the file src/be_lexer.c. This manipulation causes out-of-bounds read. The attack requires local access. The exploit has been publicly disclosed and may be utilized. Patch name: 7149c59a39ba44feca261b12f06089f265fec176. Applying a patch is the recommended action to fix this issue.
Vendor
Berry-lang
Product
Berry
CWE
CWE-119
Yayın Tarihi
2026-02-27 03:16:03
Güncelleme
2026-03-02 15:41:29
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-119 Berry LOW Berry-lang 2026

Referanslar

https://github.com/berry-lang/berry/ https://github.com/berry-lang/berry/commit/7149c59a39ba44feca261b12f06089f265fec176 https://github.com/berry-lang/berry/issues/509 https://github.com/berry-lang/berry/pull/511 https://github.com/oneafter/0211/blob/main/be/repro https://vuldb.com/?ctiid.348014 https://vuldb.com/?id.348014 https://vuldb.com/?submit.758872