CVE-2026-2653

Vulnerability

CVE-2026-2653

A security flaw has been discovered in admesh up to 0.98.5. This issue affects the function stl_check_normal_vector of the file src/normals.c. Performing a manipulation results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. It looks like this product is not really maintained anymore.

References

launchpad.net/ubuntu-cve-tracker: https://github.com/admesh/admesh/
launchpad.net/ubuntu-cve-tracker: https://github.com/admesh/admesh/issues/65
launchpad.net/ubuntu-cve-tracker: https://github.com/admesh/admesh/issues/65#issuecomment-3804571402
launchpad.net/ubuntu-cve-tracker: https://github.com/user-attachments/files/24878279/id.000035.sig.06.src.000550.time.910126.execs.241742.op.havoc.rep.5.zip
launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?ctiid.346450
launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?id.346450
launchpad.net/ubuntu-cve-tracker: https://vuldb.com/?submit.752596
launchpad.net/ubuntu-cve-tracker: https://www.cve.org/CVERecord?id=CVE-2026-2653

severitym

medium

type: vendor

source: launchpad.net/ubuntu-cve-tracker

published: 2026-02-19 00:00:00

Detection

No detection criteria available for this vulnerability.

Data Sources

Ubuntu CVE Tracker
ubuntu-cve-tracker
- raw: ghcr.io/vulsio/vuls-data-db:vuls-data-raw-ubuntu-cve-tracker
- extracted: ghcr.io/vulsio/vuls-data-db:vuls-data-extracted-ubuntu-cve-tracker

FutureVuls|GitHub