CVE-2026-3384 | ChaiScript up to 6.1.0 chaiscript_eval.hpp Function_Push_Pop recursion (Issue 633)

A vulnerability was found in ChaiScript up to 6.1.0. It has been classified as problematic. This impacts the function chaiscript::eval::AST_Node_Impl::eval/chaiscript::eval::Function_Push_Pop of the file include/chaiscript/language/chaiscript_eval.hpp. The manipulation leads to uncontrolled recursion.

This vulnerability is traded as CVE-2026-3384. An attack has to be approached locally. Furthermore, there is an exploit available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More