CVE-2026-3382

Medium CVSS: 4.8

A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::Boxed_Number::get_as of the file include/chaiscript/dispatchkit/boxed_number.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Chaiscript

Product

Chaiscript

CWE

CWE-119

Yayın Tarihi

2026-03-01 06:15:58

Güncelleme

2026-03-05 22:29:48

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Chaiscript MEDIUM Chaiscript 2026

Referanslar

https://github.com/ChaiScript/ChaiScript/ https://github.com/ChaiScript/ChaiScript/issues/635 https://github.com/ChaiScript/ChaiScript/issues/635#issue-3828258513 https://vuldb.com/?ctiid.348268 https://vuldb.com/?id.348268 https://vuldb.com/?submit.761301

Benzer Kayıtlar

Medium

CVE-2026-3384

A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::AST_No…

Medium

CVE-2026-3383

A weakness has been identified in ChaiScript up to 6.1.0. This affects the function chaiscript::Boxed_Number::go of the…

Low

CVE-2026-2656

A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::bare_equal of the file…

Low

CVE-2026-2655

A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::str_less::opera…