CVE-2026-3257

CRITICAL 9.8

UnQLite versions through 0.06 for Perl uses a potentially insecure version of the UnQLite library

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

UnQLite versions through 0.06 for Perl uses a potentially insecure version of the UnQLite library. UnQLite for Perl embeds the UnQLite library. Version 0.06 and earlier of the Perl module uses a version of the library from 2014 that may be vulnerable to a heap-based overflow.

CWE	CWE-1395
Vendor	tokuhirom
Product	unqlite
Published	Mar 5, 2026
Last Updated	Mar 5, 2026

Stay Ahead of the Next One

Get instant alerts for tokuhirom unqlite

Be the first to know when new critical vulnerabilities affecting tokuhirom unqlite are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

TOKUHIROM / UnQLite

0 ≤ 0.06

References

NVD ↗ CVE.org ↗ EPSS Data ↗

metacpan.org: https://metacpan.org/release/TOKUHIROM/UnQLite-0.07/source/Changes cve.org: https://www.cve.org/CVERecord?id=CVE-2025-3791 unqlite.symisc.net: https://unqlite.symisc.net/