A vulnerability marked as critical has been reported in openbullet2 up to 0.3.2 . Impacted is an unknown function. The manipulation leads to code injection. This vulnerability is referenced as CVE-2026-25856 . Remote exploitation of the attack is possible. No exploit is available.