CVE-2026-3384

Medium CVSS: 4.8

A security vulnerability has been detected in ChaiScript up to 6.1.0. This impacts the function chaiscript::eval::AST_Node_Impl::eval/chaiscript::eval::Function_Push_Pop of the file include/chaiscript/language/chaiscript_eval.hpp. The manipulation leads to uncontrolled recursion. An attack has to be approached locally. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Chaiscript

Product

Chaiscript

CWE

CWE-404

Yayın Tarihi

2026-03-01 08:15:57

Güncelleme

2026-03-05 22:30:17

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-404 Chaiscript MEDIUM Chaiscript 2026

Referanslar

https://github.com/ChaiScript/ChaiScript/ https://github.com/ChaiScript/ChaiScript/issues/633 https://github.com/ChaiScript/ChaiScript/issues/633#issue-3828176056 https://vuldb.com/?ctiid.348270 https://vuldb.com/?id.348270 https://vuldb.com/?submit.761303

Benzer Kayıtlar

Medium

CVE-2026-3383

A weakness has been identified in ChaiScript up to 6.1.0. This affects the function chaiscript::Boxed_Number::go of the…

Medium

CVE-2026-3382

A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::Boxed_Nu…

Low

CVE-2026-2656

A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::bare_equal of the file…

Low

CVE-2026-2655

A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::str_less::opera…