CVE-2026-11463

7.3 HIGH

Published: June 07, 2026 Modified: June 08, 2026

Description

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://gist.github.com/TrebledJ/0223c1fa3c3fd64e2c7047b8a4385ec0

Source: cna@vuldb.com

https://github.com/USCiLab/cereal/

Source: cna@vuldb.com

https://github.com/USCiLab/cereal/issues/870

Source: cna@vuldb.com

https://vuldb.com/cve/CVE-2026-11463

Source: cna@vuldb.com

https://vuldb.com/submit/814456

Source: cna@vuldb.com

https://vuldb.com/vuln/369083

Source: cna@vuldb.com

https://vuldb.com/vuln/369083/cti

Source: cna@vuldb.com

7 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.3 / 10.0

EPSS (Exploit Probability)

0.1%

20th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-843

Related CVEs

CVE-2026-8358 N/A

CVE-2026-8357 N/A

CVE-2026-8356 N/A

CVE-2026-6047 N/A

CVE-2026-6045 N/A