CVE-2026-3382 | ChaiScript up to 6.1.0 boxed_number.hpp get_as memory corruption (Issue 635)

Inserito da Angelo Barbosa | Feb 28, 2026 | CVE

A vulnerability has been found in ChaiScript up to 6.1.0 and classified as problematic. The impacted element is the function chaiscript::Boxed_Number::get_as of the file include/chaiscript/dispatchkit/boxed_number.hpp. Performing a manipulation results in memory corruption.

This vulnerability is reported as CVE-2026-3382. The attack requires a local approach. Moreover, an exploit is present.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-3382 | ChaiScript up to 6.1.0 boxed_number.hpp get_as memory corruption (Issue 635)

Post correlati

CVE-2024-3254 | SourceCodester Internship Portal Management System 1.0 admin/edit_admin.php admin_id sql injection

CVE-2025-38157 | Linux Kernel up to 6.15.2 ath9k_htc_swba out-of-bounds

CVE-2026-1434 | Politechnika Warszawska Omega-PSIR up to 4.6.6 URL lang cross site scripting

CVE-2024-30606 | Tenda FH1203 2.0.1.6 /goform/DhcpListClient fromDhcpListClient page stack-based overflow