PT-2026-3383 · Unknown · Nicbarker Clay
Oneafter
·
Published
2026-01-18
·
Updated
2026-01-18
·
CVE-2025-15535
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
nicbarker clay versions up to 0.14
Description
A security flaw exists in nicbarker clay up to version 0.14. The issue resides within the
Clay MeasureTextCached function in the clay.h library and results in a null pointer dereference. Exploitation requires local access. The exploit has been publicly released. The project was notified of the issue but has not yet responded.Recommendations
Versions prior to 0.14 should be used.
Exploit
Fix
NULL Pointer Dereference
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Nicbarker Clay