| Link Following | |
| CVE-2026-6654 | |
| Incorrect Calculation of Multi-Byte String Length | |
| Link Following | |
| Access of Resource Using Incompatible Type ('Type Confusion') | |
| Use of Out-of-range Pointer Offset | |
| ALAS2-2026-3188 | |
| Numeric Truncation Error | |
| Buffer Over-read | |
| Uncontrolled Recursion | |
| Heap-based Buffer Overflow | |
| Resource Exhaustion | |
| Heap-based Buffer Overflow | |
| Cross-site Scripting (XSS) | |
| Incorrect Default Permissions | |
| Resource Exhaustion | |
| Directory Traversal | |
| Use After Free | |
| Out-of-Bounds | |
| Time-of-check Time-of-use (TOCTOU) | |
| Integer Overflow or Wraparound | |
| Improper Handling of Exceptional Conditions | |
| Improper Input Validation | |