MEDIUM
rui314
CVE published 2026-06-18
CVE-2026-50643
CVE-2026-50643 is an Out-of-Bounds Read vulnerability in 8cc compiler. The compiler accepts attacker-controlled filename and line number metadata and later uses it without validation when accessing source line arrays. By supplying invalid or oversized line numbers, an attacker can trigger out-of-bounds memory access and a crash. The vulnerability has a CVSS score of 5.1 and a severity of MEDIUM. The maint [truncated]