ByteOS Network

ChaiScript

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2026-2656

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-2||LOW

EPSS-Not Assigned

Published-18 Feb, 2026 | 14:32

Updated-18 Feb, 2026 | 17:51

ChaiScript type_info.hpp bare_equal use after free

A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::bare_equal of the file include/chaiscript/dispatchkit/type_info.hpp. This manipulation causes use after free. The attack requires local access. The attack's complexity is rated as high. The exploitability is reported as difficult. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor-n/a

Product-ChaiScript

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-416

Use After Free

CVE-2026-2655

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-2||LOW

EPSS-Not Assigned

Published-18 Feb, 2026 | 14:02

Updated-18 Feb, 2026 | 17:51

ChaiScript chaiscript_defines.hpp operator use after free

A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::str_less::operator of the file include/chaiscript/chaiscript_defines.hpp. The manipulation results in use after free. The attack requires a local approach. The attack requires a high level of complexity. The exploitability is regarded as difficult. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor-n/a

Product-ChaiScript

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-416

Use After Free