CVE-2026-2259 | aardappel lobster up to 2025.4 Parsing dev/src/lobster/parser.h ParseStatements memory corruption (Issue 396)

Inserito da Angelo Barbosa | Feb 9, 2026 | CVE

A vulnerability has been found in aardappel lobster up to 2025.4 and classified as problematic. Affected by this issue is the function lobster::Parser::ParseStatements in the library dev/src/lobster/parser.h of the component Parsing. The manipulation leads to memory corruption.

This vulnerability is referenced as CVE-2026-2259. The attack can only be performed from a local environment. Furthermore, an exploit is available.

Applying a patch is the recommended action to fix this issue.

CVE-2026-2259 | aardappel lobster up to 2025.4 Parsing dev/src/lobster/parser.h ParseStatements memory corruption (Issue 396)

Post correlati

CVE-2022-43880 | IBM QRadar WinCollect Agent up to 10.1.2 resource consumption (XFDB-240151)

CVE-2024-27245 | Zoom Workplace Desktop App buffer overflow

CVE-2024-12715 | Asgard Security Scanner Plugin up to 0.7 on WordPress cross site scripting

CVE-2025-57624 | CYRISMA Agent up to 443 uncontrolled search path