CVE-2026-2662 | FascinatedBox lily up to 2.3 src/lily_emitter.c count_transforms out-of-bounds (Issue 381)

Inserito da Angelo Barbosa | Feb 18, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in FascinatedBox lily up to 2.3. This vulnerability affects the function count_transforms of the file src/lily_emitter.c. This manipulation causes out-of-bounds read.

The identification of this vulnerability is CVE-2026-2662. The attack can only be executed locally. Furthermore, there is an exploit available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-2662 | FascinatedBox lily up to 2.3 src/lily_emitter.c count_transforms out-of-bounds (Issue 381)

Post correlati

CVE-2023-31280 | Sierra Wireless AirVantage Online Warranty Checker Tool information disclosure (swi-psa-2023-002)

CVE-2024-10881 | sodah Luna Radio Player Plugin up to 6.24.11.07 on WordPress Shortcode lunaradio cross site scripting

CVE-2024-38815 | VMware NSX/Cloud Foundation URL cross site scripting

CVE-2024-23579 | HCL DRYiCE Optibot Reset Station 1.0/2.0 Security Question inadequate encryption (KB0113496)