CVE-2026-40504 | marcobambini gravity up to 0.9.5 gravity_vm_exec heap-based overflow (ID 437)

A vulnerability, which was classified as critical, has been found in marcobambini gravity up to 0.9.5. This vulnerability affects the function gravity_vm_exec. Performing a manipulation results in heap-based buffer overflow.

This vulnerability is known as CVE-2026-40504. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More