{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-2246", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-02-09T12:15:21.978Z", "datePublished": "2026-02-09T19:32:07.858Z", "dateUpdated": "2026-02-23T10:01:08.922Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T10:01:08.922Z"}, "title": "AprilRobotics apriltag apriltag.c apriltag_detector_detect memory corruption", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-119", "lang": "en", "description": "Memory Corruption"}]}], "affected": [{"vendor": "AprilRobotics", "product": "apriltag", "versions": [{"version": "3.4.0", "status": "affected"}, {"version": "3.4.1", "status": "affected"}, {"version": "3.4.2", "status": "affected"}, {"version": "3.4.3", "status": "affected"}, {"version": "3.4.4", "status": "affected"}, {"version": "3.4.5", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this vulnerability is the function apriltag_detector_detect of the file apriltag.c. The manipulation leads to memory corruption. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The identifier of the patch is cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61. It is suggested to install a patch to address this issue."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "timeline": [{"time": "2026-02-09T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-02-09T01:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-02-10T04:31:22.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "Oneafter (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/?id.344994", "name": "VDB-344994 | AprilRobotics apriltag apriltag.c apriltag_detector_detect memory corruption", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344994", "name": "VDB-344994 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.753162", "name": "Submit #753162 | AprilRobotics apriltag c2172a2 Memory Corruption", "tags": ["third-party-advisory"]}, {"url": "https://github.com/AprilRobotics/apriltag/issues/422", "tags": ["issue-tracking"]}, {"url": "https://github.com/AprilRobotics/apriltag/issues/422#issuecomment-3797661933", "tags": ["issue-tracking"]}, {"url": "https://github.com/oneafter/0120/blob/main/repro", "tags": ["exploit"]}, {"url": "https://github.com/AprilRobotics/apriltag/commit/cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61", "tags": ["patch"]}, {"url": "https://github.com/AprilRobotics/apriltag/", "tags": ["product"]}], "tags": ["x_open-source"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-10T20:02:16.968974Z", "id": "CVE-2026-2246", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T20:02:31.339Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-2246", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-10T20:02:16.968974Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T20:02:23.427Z"}}], "cna": {"tags": ["x_open-source"], "title": "AprilRobotics apriltag apriltag.c apriltag_detector_detect memory corruption", "credits": [{"lang": "en", "type": "reporter", "value": "Oneafter (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 4.8, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.3, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 1.7, "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C"}}], "affected": [{"vendor": "AprilRobotics", "product": "apriltag", "versions": [{"status": "affected", "version": "3.4.0"}, {"status": "affected", "version": "3.4.1"}, {"status": "affected", "version": "3.4.2"}, {"status": "affected", "version": "3.4.3"}, {"status": "affected", "version": "3.4.4"}, {"status": "affected", "version": "3.4.5"}]}], "timeline": [{"lang": "en", "time": "2026-02-09T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-02-09T01:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-02-10T04:31:22.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/?id.344994", "name": "VDB-344994 | AprilRobotics apriltag apriltag.c apriltag_detector_detect memory corruption", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.344994", "name": "VDB-344994 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.753162", "name": "Submit #753162 | AprilRobotics apriltag c2172a2 Memory Corruption", "tags": ["third-party-advisory"]}, {"url": "https://github.com/AprilRobotics/apriltag/issues/422", "tags": ["issue-tracking"]}, {"url": "https://github.com/AprilRobotics/apriltag/issues/422#issuecomment-3797661933", "tags": ["issue-tracking"]}, {"url": "https://github.com/oneafter/0120/blob/main/repro", "tags": ["exploit"]}, {"url": "https://github.com/AprilRobotics/apriltag/commit/cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61", "tags": ["patch"]}, {"url": "https://github.com/AprilRobotics/apriltag/", "tags": ["product"]}], "descriptions": [{"lang": "en", "value": "A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this vulnerability is the function apriltag_detector_detect of the file apriltag.c. The manipulation leads to memory corruption. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The identifier of the patch is cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61. It is suggested to install a patch to address this issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-119", "description": "Memory Corruption"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-02-23T10:01:08.922Z"}}}, "cveMetadata": {"cveId": "CVE-2026-2246", "state": "PUBLISHED", "dateUpdated": "2026-02-23T10:01:08.922Z", "dateReserved": "2026-02-09T12:15:21.978Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-02-09T19:32:07.858Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this vulnerability is the function apriltag_detector_detect of the file apriltag.c. The manipulation leads to memory corruption. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The identifier of the patch is cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61. It is suggested to install a patch to address this issue."}, {"lang": "es", "value": "Una vulnerabilidad de seguridad ha sido detectada en AprilRobotics apriltag hasta 3.4.5. Afectada por esta vulnerabilidad es la funci\u00f3n apriltag_detector_detect del archivo apriltag.c. La manipulaci\u00f3n conduce a corrupci\u00f3n de memoria. El ataque debe ser llevado a cabo localmente. El exploit ha sido divulgado p\u00fablicamente y puede ser usado. El identificador del parche es cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61. Se sugiere instalar un parche para abordar este problema."}], "id": "CVE-2026-2246", "lastModified": "2026-04-29T01:00:01.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 1.9, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-02-09T20:15:59.467", "references": [{"source": "cna@vuldb.com", "url": "https://github.com/AprilRobotics/apriltag/"}, {"source": "cna@vuldb.com", "url": "https://github.com/AprilRobotics/apriltag/commit/cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61"}, {"source": "cna@vuldb.com", "url": "https://github.com/AprilRobotics/apriltag/issues/422"}, {"source": "cna@vuldb.com", "url": "https://github.com/AprilRobotics/apriltag/issues/422#issuecomment-3797661933"}, {"source": "cna@vuldb.com", "url": "https://github.com/oneafter/0120/blob/main/repro"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?ctiid.344994"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?id.344994"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?submit.753162"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.4.5"}}], "product": "apriltag", "vendor": "aprilrobotics"}], "analysis": {"en": {"generated_at": "2026-04-17T21:17:00.385166+00:00", "value": {"mitigation_remediation": ["Apply the vendor patch identified by commit cfac2f5ce1ffe2de25967eb1ab80bc5d99fc1a61 or upgrade to a release newer than 3.4.5.", "Install the patched or upgraded library only on machines that process untrusted input, limiting the impact if the vulnerability is triggered.", "Monitor local execution contexts for unexpected memory usage or abnormal process behavior to detect attempts to exploit the flaw."], "summary": {"action": "Apply Patch", "impact": "Memory Corruption"}, "threat_synthesis": {"affected_systems": "AprilRobotics\u2019 apriltag library, with affected releases up to and including version 3.4.5. Any deployment that uses these versions is vulnerable; newer releases are not impacted.", "description_and_impact": "The flaw occurs in the apriltag_detector_detect function within the apriltag.c source file of the AprilRobotics apriltag library, versions up to 3.4.5. An attacker that can execute code locally can supply crafted inputs that trigger a memory corruption bug. The description does not state that the corruption leads to arbitrary code execution or privilege escalation, but the breach of memory integrity could potentially be leveraged for further exploitation depending on the surrounding context.", "risk_and_exploitability": "The CVSS score of 4.8 places the vulnerability in the moderate range, and the EPSS score of less than 1% signals a low probability that active exploitation will occur. The vulnerability is not listed in the CISA KEV catalog, and the attack vector is local. Because the exploit requires local execution, the risk is limited to environments where an attacker can run arbitrary code on the host that uses the apriltag library. The associated CWE-119 identifies the flaw as a buffer or memory safety issue."}}}}, "created": "2026-02-10T11:35:15.530554+00:00", "updated": "2026-04-17T21:30:28.382646+00:00", "vendors": ["aprilrobotics", "aprilrobotics$PRODUCT$apriltag"]}