CVE-2026-2241

CVSS v3.1

6.1

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions janet-lang versions prior to 1.40.1

Description A flaw exists in the os strftime function within the src/core/os.c file of janet-lang. A manipulation of this function can lead to an out-of-bounds read. This issue requires local access to initiate the attack. The exploit is publicly available.

Recommendations Deploy the patch 0f285855f0e34f9183956be5f16e045f54626bff.

Exploit

Fix

Buffer Overflow

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-125

Related Identifiers

CVE-2026-2241

Affected Products

Janet-Lang

CVE-2026-2241

Weakness Enumeration

Related Identifiers

Affected Products

References · 13