Description
A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-06-29
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability resides in the llvm::StringMap::insert function within ValueSymbolTable.cpp of the llvm-project up to version 22.1.6. Manipulating the input to this function triggers a stack-based buffer overflow, which can corrupt memory. Based on typical buffer overflow behavior, this may allow local code execution or further local attack steps.

Affected Systems

Vendors: llvm. Products: llvm-project (component ValueSymbolTable). Any installation of llvm-project earlier than or equal to release 22.1.6 is susceptible.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate severity. The EPSS score of 0.00124 indicates a very low probability of exploitation, and the vulnerability is not listed in CISA's KEV catalog. Local access is required, but a publicly available exploit exists, making it a realistic threat for systems that allow local users to invoke the affected component. Based on the nature of stack-based buffer overflows, the potential impact is limited to local code execution and denial of service through crashes.

Generated by OpenCVE AI on July 1, 2026 at 12:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the llvm-project installation to version 22.1.7 or later, where the stack-based buffer overflow in ValueSymbolTable.cpp has been corrected.
  • If an immediate upgrade cannot be performed, restrict local access to the components that use ValueSymbolTable, run them under the least privileged user, and avoid exposing them to untrusted input that could trigger insert.
  • Continuously monitor the application for abnormal crashes or memory corruption patterns and apply any vendor security advisories as soon as they are released.

Generated by OpenCVE AI on July 1, 2026 at 12:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-120
References
Metrics threat_severity

None

threat_severity

Low


Mon, 29 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 29 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
Title llvm llvm-project ValueSymbolTable ValueSymbolTable.cpp insert stack-based overflow
First Time appeared Llvm
Llvm llvm-project
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:a:llvm:llvm-project:*:*:*:*:*:*:*:*
Vendors & Products Llvm
Llvm llvm-project
References
Metrics cvssV2_0

{'score': 1.7, 'vector': 'AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 3.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P'}


Subscriptions

Llvm Llvm-project
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-29T15:23:24.648Z

Reserved: 2026-06-28T18:47:36.926Z

Link: CVE-2026-13573

cve-icon Vulnrichment

Updated: 2026-06-29T15:23:19.394Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-29T14:00:09Z

Links: CVE-2026-13573 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T12:45:16Z

Weaknesses
  • CWE-119

    Improper Restriction of Operations within the Bounds of a Memory Buffer

  • CWE-120

    Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

  • CWE-121

    Stack-based Buffer Overflow