CVE-2026-9158

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 18, 2026

Vendor unknown

Description

In Eclipse 4diac FORTE versions 3.0.0 to 3.1.0, a specially crafted DELETE connection command to the management interface can lead to a dangling pointer. This allows subsequent commands to access freed memory (use-after-free).

References

https://gitlab.eclipse.org/security/cve-assignment/-/work_items/109