CVE-2026-13573 | llvm llvm-project up to 22.1.6 ValueSymbolTable ValueSymbolTable.cpp llvm::StringMap::insert stack-based overflow (Issue 199187)

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability labeled as problematic has been found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow.

This vulnerability is known as CVE-2026-13573. Attacking locally is a requirement. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-13573 | llvm llvm-project up to 22.1.6 ValueSymbolTable ValueSymbolTable.cpp llvm::StringMap::insert stack-based overflow (Issue 199187)

Post correlati

CVE-2024-56358 | gristlabs grist-core up to 1.3.1 SVG File cross site scripting (GHSA-jvfm-gf4f-33q3)

CVE-2025-41745 | Phoenix Contact K1 up to 3.49 pxc_portCntr2.php cross site scripting (VDE-2025-071)

CVE-2025-9163 | Houzez Plugin up to 4.1.6 on WordPress SVG File houzez_property_img_upload cross site scripting

CVE-2024-53940 | Victure RX1800 WiFi 6 Router EN_V1.0.0_r12_110933 Ping Utility /cgi-bin/luci/admin command injection