CVE-2026-3384 | ChaiScript up to 6.1.0 chaiscript_eval.hpp Function_Push_Pop recursion (Issue 633)

A vulnerability was found in ChaiScript up to 6.1.0. It has been classified as problematic. This impacts the function chaiscript::eval::AST_Node_Impl::eval/chaiscript::eval::Function_Push_Pop of the file include/chaiscript/language/chaiscript_eval.hpp. The manipulation leads to uncontrolled recursion.

This vulnerability is traded as CVE-2026-3384. An attack has to be approached locally. Furthermore, there is an exploit available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-3384 | ChaiScript up to 6.1.0 chaiscript_eval.hpp Function_Push_Pop recursion (Issue 633)

Post correlati

CVE-2023-32460 | Dell PowerEdge Platform prior 2.20.1 BIOS missing authentication (dsa-2023-361)

CVE-2024-57885 | Linux Kernel up to 6.6.69/6.12.8 in_atomic data authenticity

CVE-2024-9926 | Jetpack Plugin up to 13.9.0 on WordPress REST Endpoint authorization

CVE-2024-10607 | code-projects Courier Management System 1.0 /track-result.php Consignment sql injection