A vulnerability was found in Squirrel up to 3.2 . It has been classified as critical . Impacted is the function ReadObject of the file squirrel/sqobject.cpp of the component Cnut File Handler . Performing a manipulation results in heap-based buffer overflow. This vulnerability is identified as CVE-2026-9541 . The attack is only possible with local access. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.