CVE-2026-3388

Medium CVSS: 4.8

A vulnerability was found in Squirrel up to 3.2. This affects the function SQCompiler::Factor/SQCompiler::UnaryOP of the file squirrel/sqcompiler.cpp. Performing a manipulation results in uncontrolled recursion. The attack needs to be approached locally. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Squirrel-lang

Product

Squirrel

CWE

CWE-404

Yayın Tarihi

2026-03-01 10:16:01

Güncelleme

2026-03-05 01:47:06

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-404 Squirrel MEDIUM Squirrel-lang 2026

Referanslar

https://github.com/albertodemichelis/squirrel/issues/312 https://github.com/oneafter/0122/blob/main/i312/repro https://vuldb.com/?ctiid.348274 https://vuldb.com/?id.348274 https://vuldb.com/?submit.761314

Benzer Kayıtlar

Medium

CVE-2026-3389

A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstd_rex_newnode in the l…

Medium

CVE-2026-2661

A security flaw has been discovered in Squirrel up to 3.2. This affects the function SQObjectPtr::operator in the librar…

Medium

CVE-2026-2659

A vulnerability was determined in Squirrel up to 3.2. Affected by this vulnerability is the function SQFuncState::PopTar…