CVE-2026-9158

Vulnerability Description

In Eclipse 4diac FORTE versions 3.0.0 to 3.1.0, a specially crafted DELETE connection command to the management interface can lead to a dangling pointer. This allows subsequent commands to access freed memory (use-after-free).

Vulnerability Details

Published Date

June 18, 2026

Last Modified

June 18, 2026

CWE ID

CWE-416

Source

NVD

External References

https://gitlab.eclipse.org/security/cve-assignment/-/work_items/109

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment