{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-2241", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-02-09T09:38:29.872Z", "datePublished": "2026-02-09T16:02:08.720Z", "dateUpdated": "2026-02-23T10:00:21.668Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T10:00:21.668Z"}, "title": "janet-lang janet os.c os_strftime out-of-bounds", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-125", "lang": "en", "description": "Out-of-Bounds Read"}]}, {"descriptions": [{"type": "CWE", "cweId": "CWE-119", "lang": "en", "description": "Memory Corruption"}]}], "affected": [{"vendor": "janet-lang", "product": "janet", "versions": [{"version": "1.40.0", "status": "affected"}, {"version": "1.40.1", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of the file src/core/os.c. Performing a manipulation results in out-of-bounds read. The attack must be initiated from a local position. The exploit has been made public and could be used. The patch is named 0f285855f0e34f9183956be5f16e045f54626bff. To fix this issue, it is recommended to deploy a patch."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "timeline": [{"time": "2026-02-09T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-02-09T01:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-02-09T19:34:23.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "Oneafter (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/?id.344980", "name": "VDB-344980 | janet-lang janet os.c os_strftime out-of-bounds", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344980", "name": "VDB-344980 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.753156", "name": "Submit #753156 | janet-lang janet c43e066 Heap-based Buffer Overflow", "tags": ["third-party-advisory"]}, {"url": "https://github.com/janet-lang/janet/issues/1701", "tags": ["issue-tracking"]}, {"url": "https://github.com/janet-lang/janet/issues/1701#event-4446770461", "tags": ["issue-tracking"]}, {"url": "https://github.com/oneafter/0123/blob/main/ja3/repro", "tags": ["exploit"]}, {"url": "https://github.com/janet-lang/janet/commit/0f285855f0e34f9183956be5f16e045f54626bff", "tags": ["patch"]}, {"url": "https://github.com/janet-lang/janet/", "tags": ["product"]}], "tags": ["x_open-source"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-09T16:38:57.243942Z", "id": "CVE-2026-2241", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-09T16:39:24.526Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-2241", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-09T16:38:57.243942Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-09T16:39:18.899Z"}}], "cna": {"tags": ["x_open-source"], "title": "janet-lang janet os.c os_strftime out-of-bounds", "credits": [{"lang": "en", "type": "reporter", "value": "Oneafter (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "affected": [{"vendor": "janet-lang", "product": "janet", "versions": [{"status": "affected", "version": "1.40.0"}, {"status": "affected", "version": "1.40.1"}]}], "timeline": [{"lang": "en", "time": "2026-02-09T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-02-09T01:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-02-09T19:34:23.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/?id.344980", "name": "VDB-344980 | janet-lang janet os.c os_strftime out-of-bounds", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344980", "name": "VDB-344980 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.753156", "name": "Submit #753156 | janet-lang janet c43e066 Heap-based Buffer Overflow", "tags": ["third-party-advisory"]}, {"url": "https://github.com/janet-lang/janet/issues/1701", "tags": ["issue-tracking"]}, {"url": "https://github.com/janet-lang/janet/issues/1701#event-4446770461", "tags": ["issue-tracking"]}, {"url": "https://github.com/oneafter/0123/blob/main/ja3/repro", "tags": ["exploit"]}, {"url": "https://github.com/janet-lang/janet/commit/0f285855f0e34f9183956be5f16e045f54626bff", "tags": ["patch"]}, {"url": "https://github.com/janet-lang/janet/", "tags": ["product"]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of the file src/core/os.c. Performing a manipulation results in out-of-bounds read. The attack must be initiated from a local position. The exploit has been made public and could be used. The patch is named 0f285855f0e34f9183956be5f16e045f54626bff. To fix this issue, it is recommended to deploy a patch."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-125", "description": "Out-of-Bounds Read"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-119", "description": "Memory Corruption"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T10:00:21.668Z"}}}, "cveMetadata": {"cveId": "CVE-2026-2241", "state": "PUBLISHED", "dateUpdated": "2026-02-23T10:00:21.668Z", "dateReserved": "2026-02-09T09:38:29.872Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-02-09T16:02:08.720Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:janet-lang:janet:*:*:*:*:*:*:*:*", "matchCriteriaId": "D63D3EB2-96FF-4D2B-AD67-2DE091B2CC05", "versionEndIncluding": "1.40.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of the file src/core/os.c. Performing a manipulation results in out-of-bounds read. The attack must be initiated from a local position. The exploit has been made public and could be used. The patch is named 0f285855f0e34f9183956be5f16e045f54626bff. To fix this issue, it is recommended to deploy a patch."}, {"lang": "es", "value": "Se encontr\u00f3 una vulnerabilidad en janet-lang janet hasta 1.40.1. Esto afecta a la funci\u00f3n os_strftime del archivo src/core/os.c. Realizar una manipulaci\u00f3n resulta en una lectura fuera de l\u00edmites. El ataque debe iniciarse desde una posici\u00f3n local. El exploit se ha hecho p\u00fablico y podr\u00eda utilizarse. El parche se llama 0f285855f0e34f9183956be5f16e045f54626bff. Para solucionar este problema, se recomienda desplegar un parche."}], "id": "CVE-2026-2241", "lastModified": "2026-04-29T01:00:01.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "cna@vuldb.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 4.2, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 1.9, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-02-09T18:16:08.660", "references": [{"source": "cna@vuldb.com", "tags": ["Product"], "url": "https://github.com/janet-lang/janet/"}, {"source": "cna@vuldb.com", "tags": ["Patch"], "url": "https://github.com/janet-lang/janet/commit/0f285855f0e34f9183956be5f16e045f54626bff"}, {"source": "cna@vuldb.com", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/janet-lang/janet/issues/1701"}, {"source": "cna@vuldb.com", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/janet-lang/janet/issues/1701#event-4446770461"}, {"source": "cna@vuldb.com", "tags": ["Exploit"], "url": "https://github.com/oneafter/0123/blob/main/ja3/repro"}, {"source": "cna@vuldb.com", "tags": ["Permissions Required", "VDB Entry"], "url": "https://vuldb.com/?ctiid.344980"}, {"source": "cna@vuldb.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://vuldb.com/?id.344980"}, {"source": "cna@vuldb.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://vuldb.com/?submit.753156"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}, {"lang": "en", "value": "CWE-125"}], "source": "cna@vuldb.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "1.40.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "1.40.1"}}], "product": "janet", "vendor": "janet-lang"}], "analysis": {"en": {"generated_at": "2026-04-18T13:04:28.527172+00:00", "value": {"mitigation_remediation": ["Apply the official patch identified by commit\u202f0f285855f0e34f9183956be5f16e045f54626bff, which updates janet-lang to a version containing the fix.", "If upgrading immediately is not feasible, mitigate the risk by restricting local use of the os_strftime function, such as disabling it in production deployments or implementing input validation that prevents the crafted strings that trigger the out\u2011of\u2011bounds read.", "If neither patching nor disabling the function is possible, compile Janet without the os_strftime implementation or run the interpreter in a sandboxed environment that limits memory access."], "summary": {"action": "Assess Impact", "impact": "Out-of-Bounds Read"}, "threat_synthesis": {"affected_systems": "The affected product is janet-lang:janet, up to and including version 1.40.1. No newer releases are listed as currently patched. All builds of the language that include the vulnerable os_strftime implementation before the referenced commit are subject to this issue.", "description_and_impact": "An out-of-bounds read vulnerability exists in the os_strftime function of janet-lang's core library. When a specially crafted input is processed, the function performs a read beyond the bounds of an internal buffer, potentially exposing sensitive data from memory. This flaw does not provide direct code execution but can leak confidential information from the local process space. The weakness is identified as a buffer overread, classified under the Common Weakness Enumeration identifiers CWE-119 and CWE-125.", "risk_and_exploitability": "The CVSS score for this vulnerability is 4.8, indicating a moderate impact and limited exploitation potential. The EPSS score is below 1\u202f%, implying a very low probability of widespread exploitation at present. The vulnerability is not listed in the CISA KEV catalog. Because the attack must be initiated locally and the exploit has already been made public, any adversary with local access to a system running an affected version could perform a memory disclosure. No remote attack vector or elevated privileges are required beyond local execution."}}}}, "created": "2026-02-10T11:35:29.750477+00:00", "title": "Out-of-Bounds Read in Janet os_strftime Leading to Local Memory Disclosure", "updated": "2026-04-18T13:15:25.706667+00:00", "vendors": ["janet-lang", "janet-lang$PRODUCT$janet"]}