CVE-2026-8261

MEDIUM 5.9

Squirrel sqobject.cpp Load heap-based overflow

CVSS Score

5.9

EPSS Score

0.0%

EPSS Percentile

4th

A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

CWE	CWE-122 CWE-119
Vendor	n/a
Product	squirrel
Published	May 11, 2026
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for n/a squirrel

Be the first to know when new medium vulnerabilities affecting n/a squirrel are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

n/a / Squirrel

3.0 3.1 3.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/362558 vuldb.com: https://vuldb.com/vuln/362558/cti vuldb.com: https://vuldb.com/submit/809904 github.com: https://github.com/albertodemichelis/squirrel/issues/326 github.com: https://github.com/biniamf/pocs/tree/main/squirrel-sqobject-functionproto-load-intovf-lineinfos

Credits

🔍 biniam (VulDB User) VulDB CNA Team