CVE-2026-3385 | wren-lang wren up to 0.4.0 src/vm/wren_compiler.c resolveLocal recursion (Issue 1218)

Inserito da Angelo Barbosa | Feb 28, 2026 | CVE

A vulnerability was found in wren-lang wren up to 0.4.0. It has been declared as problematic. Affected is the function resolveLocal of the file src/vm/wren_compiler.c. The manipulation results in uncontrolled recursion.

This vulnerability is known as CVE-2026-3385. Attacking locally is a requirement. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-3385 | wren-lang wren up to 0.4.0 src/vm/wren_compiler.c resolveLocal recursion (Issue 1218)

Post correlati

CVE-2023-49334 | Zoho ManageEngine ADAudit Plus up to 7270 Full Summary Report Export sql injection

CVE-2024-44129 | Apple macOS up to 13.6 User Information information disclosure

CVE-2025-12004 | Lockdown Extension up to 1.41 on Mediawiki permission assignment

CVE-2024-1441 | libvirt udevListInterfacesByStatus off-by-one