EUVD-2026-30793

🗓️ 18 May 2026 18:45:12Reported by EUVDType

Remote stack overflow in lwIP up to 2.2.1 via snmp_parse_inbound_frame in SNMPv3 handler patch.

Reporter	Title	Published	Views	Family All 19
ATTACKERKB	CVE-2026-8836	18 May 202618:45	–	attackerkb
GithubExploit	Exploit for CVE-2026-8836	31 May 202609:11	–	githubexploit
Circl	CVE-2026-8836	18 May 202614:31	–	circl
CNNVD	lwip 缓冲区错误漏洞	18 May 202600:00	–	cnnvd
CVE	CVE-2026-8836	18 May 202618:45	–	cve
Cvelist	CVE-2026-8836 lwIP snmpv3 USM snmp_msg.c snmp_parse_inbound_frame stack-based overflow	18 May 202618:45	–	cvelist
Debian CVE	CVE-2026-8836	18 May 202618:45	–	debiancve
NVD	CVE-2026-8836	18 May 202619:16	–	nvd
OSV	DEBIAN-CVE-2026-8836	18 May 202619:16	–	osv
OSV	OESA-2026-2480 lwip security update	29 May 202613:33	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "59f7abc9-ebed-34ed-8376-87ddf51c93d5",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "475a81cd-2d9b-3c3b-a03c-82c3bc842f7f",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.1.0"
      },
      {
        "id": "606994cd-ef52-3489-bfaa-8be0ee69bdb5",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.1.2"
      },
      {
        "id": "63bca365-6a59-38fb-8045-84ccd308e4af",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.1.1"
      },
      {
        "id": "786f9b65-0240-3b13-89d2-a6f07809bf56",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.2.0"
      },
      {
        "id": "873625d0-5c55-3535-b214-b00a027321ab",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.2.1"
      },
      {
        "id": "fc45927c-6a09-37dc-a1f3-b2a651944c15",
        "product": {
          "name": "lwIP"
        },
        "product_version": "2.1.3"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/364474
vuldb	www.vuldb.com/vuln/364474/cti
vuldb	www.vuldb.com/submit/829798
savannah	www.savannah.nongnu.org/bugs/
cgit	www.cgit.git.savannah.gnu.org/cgit/lwip.git/commit/
github	www.github.com/lwip-tcpip/lwip/commit/0c957ec03054eb6c8205e9c9d1d05d90ada3898c

18 May 2026 19:20Current

7.7High risk

Vulners AI Score7.7

CVSS 49.3

CVSS 3.19.8

CVSS 210

CVSS 39.8

EPSS0.00864

SSVC