All 4 CVE vulnerabilities found in ANTLR4, with AI-generated Chinese analysis, references, and POCs.
Vendor: antlr
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-13503 | antlr ANTLR4 tokenVocab Grammar Option TokenVocabParser.java getImportedVocabFile path traversal CWE-22 | 5.3 | Medium | 2026-06-28 |
| CVE-2026-13502 | antlr ANTLR4 Maven Plugin GrammarDependencies.java ObjectInputStream.readObject toctou CWE-367 | 4.5 | Medium | 2026-06-28 |
| CVE-2026-13501 | antlr ANTLR4 gofmt GoTarget.java GoTarget command injection CWE-77 | 5.3 | Medium | 2026-06-28 |
| CVE-2026-13500 | antlr ANTLR4 Grammar Action Block OutputFile.java code injection CWE-94 | 7.3 | High | 2026-06-28 |
All 4 known CVE vulnerabilities affecting ANTLR4 with full Chinese analysis, references, and POCs where available.