Exploit for CVE-2026-2588

Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems.
Sodium.xs casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium functions. On 32-bit systems size_t is typically 32-bits while an unsigned long long is at least 64-bits.

Published: 2026-02-23

CVSS: 9.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Download Exploit for CVE-2026-2588 here:

http://zeroday6mns52t72y3rsle7f72wca5uwn2xzktdysf72flozx7sv4mqd.onion/exploit-for-cve-2026-2588.729/

Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.

Check our portfolio:

http://zeroday6mns52t72y3rsle7f72wca5uwn2xzktdysf72flozx7sv4mqd.onion/members/veletateam.344/

https://veletacapital.com/exploit-48-cve-2025-10878/

https://veletacapital.com/exploit-732-cve-2026-21656/

https://veletacapital.com/exploit-821-cve-2026-26710/

https://veletacapital.com/exploit-91-cve-2026-25526/

https://veletacapital.com/exploit-475-cve-2026-27212/