Vulnerabilities

CVE-2026-3387 - wren-lang wren wren_compiler.c getByteCountForArguments null pointer dereference

2026-03-01 0 views admin

CVE ID : CVE-2026-3387 Published : March 1, 2026, 10:16 a.m. | 19 minutes ago Description : A vulnerability has been found in wren-lang wren up to 0.4.0. Affected by this issue is the function getByteCountForArguments of the file src/vm/wren_compiler.c. Such manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet. Severity: 4.8 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-3387

Severity

MEDIUM

Published

March 1, 2026

Attack Vector: Local

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-3387medium

CVE-2026-3387 - wren-lang wren wren_compiler.c getByteCountForArguments null pointer dereference

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-3385 - wren-lang wren wren_compiler.c resolveLocal recursion

CVE-2026-3386 - wren-lang wren wren_compiler.c emitOp out-of-bounds

CVE-2026-3390 - FascinatedBox lily Error Reporting lily_build_error.c patch_line_end out-of-bounds

CVE-2026-3389 - Squirrel sqstdrex.cpp sqstd_rex_newnode null pointer dereference

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting