CVE-2026-2858 | wren-lang wren up to 0.4.0 Source File Parser src/vm/wren_compiler.c peekChar out-of-bounds (Issue 1217)

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability categorized as problematic has been discovered in wren-lang wren up to 0.4.0. This affects the function peekChar of the file src/vm/wren_compiler.c of the component Source File Parser. Such manipulation leads to out-of-bounds read.

This vulnerability is documented as CVE-2026-2858. The attack needs to be performed locally. Additionally, an exploit exists.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-2858 | wren-lang wren up to 0.4.0 Source File Parser src/vm/wren_compiler.c peekChar out-of-bounds (Issue 1217)

Post correlati

CVE-2024-5235 | Campcodes Complete Web-Based School Management System 1.0 teacher_salary_invoice.php teacher_id sql injection

CVE-2024-4564 | CoDesigner WooCommerce Builder for Elementor Plugin cross site scripting

CVE-2024-47364 | Move Addons for Elementor Plugin up to 1.3.4 on WordPress cross site scripting

CVE-2025-30663 | Zoom Workplace Desktop App up to 6.3.x toctou