PT-2026-21396 · Unknown · Aardappel Lobster
Oneafter
·
Published
2026-02-21
·
Updated
2026-02-22
·
CVE-2026-2887
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
aardappel lobster versions prior to 2026.1
Description
A security issue exists in aardappel lobster up to version 2025.4. The
lobster::TypeName function within the dev/src/lobster/idents.h library is susceptible to uncontrolled recursion. This manipulation can only be initiated from a local environment. The exploit for this issue has been publicly disclosed.Recommendations
Upgrade to version 2026.1 to resolve this issue.
Exploit
Fix
Improper Resource Release
Uncontrolled Recursion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Aardappel Lobster