cbcvebase.
CVE-2026-8261
published 2026-05-11

CVE-2026-8261: A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation…

low2CVSS 4.0
AVLACLATNPRNUINVCLVILVALSCNSINSANEPCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

Affected

62 ranges· showing 25
VendorProductVersion rangeFixed in
advanced-cluster-securityrhacs-main-rhel8
advanced-cluster-securityrhacs-rhel8-operator
advanced-cluster-securityrhacs-roxctl-rhel8
advanced-cluster-securityrhacs-scanner-v4-rhel8
aquasecuritytrivy
container-native-virtualizationbridge-marker-rhel9
container-native-virtualizationcluster-network-addons-operator-rhel9
container-native-virtualizationcnv-containernetworking-plugins-rhel9
container-native-virtualizationkubemacpool-rhel9
container-native-virtualizationkubesecondarydns-rhel9
container-native-virtualizationmultus-dynamic-networks-rhel9
container-native-virtualizationovs-cni-plugin-rhel9
dvodeployment-validation-rhel8-operator
helmhelm
multicluster-globalhubmulticluster-globalhub-grafana-rhel9
openshift-gitops-1argocd-rhel8
openshift-gitops-1argocd-rhel9
openshift-lightspeedopenshift-mcp-server-rhel9
openshift-mcp-betaopenshift-mcp-server-rhel9
openshift-service-meshistio-rhel8-operator
openshift-service-meshistio-rhel9-operator
openshift3ose-console
openshift4-dev-preview-betaopenperouter-edge-rhel10-operator
openshift4-dev-preview-betaopenperouter-operator-bundle
openshift4-dev-preview-betaopenperouter-rhel9-operator