{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-2069", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-02-06T07:41:07.150Z", "datePublished": "2026-02-06T22:02:08.933Z", "dateUpdated": "2026-02-23T09:28:33.822Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T09:28:33.822Z"}, "title": "ggml-org llama.cpp GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-121", "lang": "en", "description": "Stack-based Buffer Overflow"}]}, {"descriptions": [{"type": "CWE", "cweId": "CWE-119", "lang": "en", "description": "Memory Corruption"}]}], "affected": [{"vendor": "ggml-org", "product": "llama.cpp", "versions": [{"version": "55abc39", "status": "affected"}], "modules": ["GBNF Grammar Handler"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in ggml-org llama.cpp up to 55abc39. Impacted is the function llama_grammar_advance_stack of the file llama.cpp/src/llama-grammar.cpp of the component GBNF Grammar Handler. This manipulation causes stack-based buffer overflow. The attack needs to be launched locally. The exploit has been published and may be used. Patch name: 18993. To fix this issue, it is recommended to deploy a patch."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "timeline": [{"time": "2026-02-06T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-02-06T01:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-02-10T05:46:24.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "TYGLS (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/?id.344636", "name": "VDB-344636 | ggml-org llama.cpp GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344636", "name": "VDB-344636 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.745263", "name": "Submit #745263 | llama.cpp commit 55abc39 Stack-based Buffer Overflow", "tags": ["third-party-advisory"]}, {"url": "https://github.com/ggml-org/llama.cpp/issues/18988", "tags": ["issue-tracking"]}, {"url": "https://github.com/ggml-org/llama.cpp/issues/18988#event-4426704865", "tags": ["issue-tracking"]}, {"url": "https://github.com/user-attachments/files/24761101/poc.zip", "tags": ["exploit"]}, {"url": "https://github.com/ggml-org/llama.cpp/pull/18993", "tags": ["issue-tracking", "patch"]}, {"url": "https://github.com/ggml-org/llama.cpp/", "tags": ["product"]}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-10T15:18:13.164026Z", "id": "CVE-2026-2069", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T15:18:27.688Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-2069", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-10T15:18:13.164026Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T15:18:23.357Z"}}], "cna": {"title": "ggml-org llama.cpp GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow", "credits": [{"lang": "en", "type": "reporter", "value": "TYGLS (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "affected": [{"vendor": "ggml-org", "modules": ["GBNF Grammar Handler"], "product": "llama.cpp", "versions": [{"status": "affected", "version": "55abc39"}]}], "timeline": [{"lang": "en", "time": "2026-02-06T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-02-06T01:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-02-10T05:46:24.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/?id.344636", "name": "VDB-344636 | ggml-org llama.cpp GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344636", "name": "VDB-344636 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.745263", "name": "Submit #745263 | llama.cpp commit 55abc39 Stack-based Buffer Overflow", "tags": ["third-party-advisory"]}, {"url": "https://github.com/ggml-org/llama.cpp/issues/18988", "tags": ["issue-tracking"]}, {"url": "https://github.com/ggml-org/llama.cpp/issues/18988#event-4426704865", "tags": ["issue-tracking"]}, {"url": "https://github.com/user-attachments/files/24761101/poc.zip", "tags": ["exploit"]}, {"url": "https://github.com/ggml-org/llama.cpp/pull/18993", "tags": ["issue-tracking", "patch"]}, {"url": "https://github.com/ggml-org/llama.cpp/", "tags": ["product"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in ggml-org llama.cpp up to 55abc39. Impacted is the function llama_grammar_advance_stack of the file llama.cpp/src/llama-grammar.cpp of the component GBNF Grammar Handler. This manipulation causes stack-based buffer overflow. The attack needs to be launched locally. The exploit has been published and may be used. Patch name: 18993. To fix this issue, it is recommended to deploy a patch."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-121", "description": "Stack-based Buffer Overflow"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-119", "description": "Memory Corruption"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T09:28:33.822Z"}}}, "cveMetadata": {"cveId": "CVE-2026-2069", "state": "PUBLISHED", "dateUpdated": "2026-02-23T09:28:33.822Z", "dateReserved": "2026-02-06T07:41:07.150Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-02-06T22:02:08.933Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw has been found in ggml-org llama.cpp up to 55abc39. Impacted is the function llama_grammar_advance_stack of the file llama.cpp/src/llama-grammar.cpp of the component GBNF Grammar Handler. This manipulation causes stack-based buffer overflow. The attack needs to be launched locally. The exploit has been published and may be used. Patch name: 18993. To fix this issue, it is recommended to deploy a patch."}, {"lang": "es", "value": "Se ha encontrado un fallo en ggml-org llama.cpp hasta 55abc39. La funci\u00f3n afectada es llama_grammar_advance_stack del archivo llama.cpp/src/llama-grammar.cpp del componente GBNF Grammar Handler. Esta manipulaci\u00f3n causa desbordamiento de b\u00fafer basado en pila. El ataque necesita ser lanzado localmente. El exploit ha sido publicado y puede ser usado. Nombre del parche: 18993. Para solucionar este problema, se recomienda desplegar un parche."}], "id": "CVE-2026-2069", "lastModified": "2026-04-29T01:00:01.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 1.9, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-02-06T22:16:12.883", "references": [{"source": "cna@vuldb.com", "url": "https://github.com/ggml-org/llama.cpp/"}, {"source": "cna@vuldb.com", "url": "https://github.com/ggml-org/llama.cpp/issues/18988"}, {"source": "cna@vuldb.com", "url": "https://github.com/ggml-org/llama.cpp/issues/18988#event-4426704865"}, {"source": "cna@vuldb.com", "url": "https://github.com/ggml-org/llama.cpp/pull/18993"}, {"source": "cna@vuldb.com", "url": "https://github.com/user-attachments/files/24761101/poc.zip"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?ctiid.344636"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?id.344636"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?submit.745263"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}, {"lang": "en", "value": "CWE-121"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-17T22:20:29.010359+00:00", "value": {"mitigation_remediation": ["Apply the patch referenced as 18993, updating llama.cpp to a commit after 55abc39.", "Restrict or sandbox any local user accounts that can invoke the llama.cpp executable, preventing unauthorized manipulation of grammar input.", "Configure runtime memory protection tools, such as Address Sanitizer or stack canaries, to detect and prevent stack-based overflows during execution."], "summary": {"action": "Apply Patch", "impact": "Local Stack Buffer Overflow"}, "threat_synthesis": {"affected_systems": "ggml-org\u2019s llama.cpp up to commit 55abc39 is affected. No specific sub\u2011release versions are listed beyond this commit identifier.", "description_and_impact": "A stack-based buffer overflow has been discovered in the llama_grammar_advance_stack function of ggml-org\u2019s llama.cpp, affecting versions up to the 55abc39 commit. The flaw occurs when the GBNF Grammar Handler processes malformed input and overflows a local stack buffer. Attackers must operate locally on the machine running llama.cpp, but once the overflow is triggered, the attacker may gain arbitrary code execution on that system.", "risk_and_exploitability": "The CVSS score is 4.8, indicating low severity, and the EPSS score is below 1%, meaning the likelihood of exploitation is minimal. The vulnerability is not listed in CISA\u2019s KEV catalog. Because the attack requires local execution, the risk is confined to systems where a malicious user has local access. Nonetheless, the presence of a publicly available exploit means that any local user who can feed crafted grammar input could potentially trigger arbitrary code execution."}}}}, "created": "2026-02-09T10:49:34.145469+00:00", "updated": "2026-04-17T22:30:29.589237+00:00", "vendors": ["ggml", "ggml$PRODUCT$llama.cpp"]}