CVE-2026-3285 | berry-lang berry up to 1.1.0 src/be_lexer.c scan_string out-of-bounds (Issue 509)

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in berry-lang berry up to 1.1.0. The affected element is the function scan_string of the file src/be_lexer.c. This manipulation causes out-of-bounds read.

This vulnerability appears as CVE-2026-3285. The attack requires local access. In addition, an exploit is available.

Applying a patch is the recommended action to fix this issue.

CVE-2026-3285 | berry-lang berry up to 1.1.0 src/be_lexer.c scan_string out-of-bounds (Issue 509)

Post correlati

CVE-2024-25165 | SWFTools 0.9.2 lib/swf5compiler.flex LineText buffer overflow (Issue 217)

CVE-2024-23521 | Happyforms Plugin up to 1.25.10 on WordPress authorization

CVE-2024-9911 | D-Link DIR-619L B1 2.06 /goform/formSetPortTr curTime buffer overflow

CVE-2024-0390 | INPRAX iZZi connect up to 20240103 on Android read hard-coded credentials