Lucene search
K

100 matches found

NVD
NVD
added yesterday4 views

CVE-2026-15548

A security vulnerability has been detected in Shibby Tomato up to 1.28.0000. This vulnerability affects the function sub407220 of the file /usr/sbin/httpd of the component DNS List Rendering. The manipulation leads to stack-based buffer overflow. The attack is possible to be carried out remotely...

9CVSS0.00738EPSS
Exploits0References5
EUVD
EUVD
added yesterday4 views

EUVD-2026-43314

A security flaw has been discovered in Shibby Tomato up to 1.28.0000. Affected by this issue is the function sub2D568 of the component startjffs2. Performing a manipulation of the argument jffs2exec results in os command injection. Remote exploitation of the attack is possible. The exploit has be...

6.5CVSS6.3AI score0.0105EPSS
Exploits0References6
EUVD
EUVD
added yesterday5 views

EUVD-2026-43309

A vulnerability was identified in Shibby Tomato up to 1.28.0000. Affected by this vulnerability is the function main of the file www/apcupsd/tomatodata.cgi of the component apcupsd. Such manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit is publicly...

9CVSS6.7AI score0.00396EPSS
Exploits0References6
EUVD
EUVD
added yesterday6 views

EUVD-2026-43317

A weakness has been identified in Shibby Tomato up to 1.28.0000. This affects the function sub2D048 of the component CIFS Mount Handler. Executing a manipulation of the argument cifs1/cifs2 can lead to os command injection. The attack can be executed remotely. The exploit has been made available ...

6.5CVSS6.4AI score0.0105EPSS
Exploits0References6
EUVD
EUVD
added yesterday5 views

EUVD-2026-43304

A vulnerability was determined in Shibby Tomato up to 1.28.0000. Affected is the function getupsvar of the file www/apcupsd/tomatodata.cgi of the component apcupsd. This manipulation of the argument Field causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has be...

9CVSS7.4AI score0.00438EPSS
Exploits0References6
NVD
NVD
added yesterday5 views

CVE-2026-15546

A security flaw has been discovered in Shibby Tomato up to 1.28.0000. Affected by this issue is the function sub2D568 of the component startjffs2. Performing a manipulation of the argument jffs2exec results in os command injection. Remote exploitation of the attack is possible. The exploit has be...

6.5CVSS0.0105EPSS
Exploits0References5
NVD
NVD
added yesterday4 views

CVE-2026-15545

A vulnerability was identified in Shibby Tomato up to 1.28.0000. Affected by this vulnerability is the function main of the file www/apcupsd/tomatodata.cgi of the component apcupsd. Such manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit is publicly...

9CVSS0.00396EPSS
Exploits0References5
NVD
NVD
added yesterday5 views

CVE-2026-15547

A weakness has been identified in Shibby Tomato up to 1.28.0000. This affects the function sub2D048 of the component CIFS Mount Handler. Executing a manipulation of the argument cifs1/cifs2 can lead to os command injection. The attack can be executed remotely. The exploit has been made available ...

6.5CVSS0.0105EPSS
Exploits0References5
CVE
CVE
added yesterday13 views

CVE-2026-15548

CVE-2026-15548 affects Shibby Tomato up to version 1.28.0000. The flaw resides in the DNS List Rendering component, specifically the function sub_407220 in /usr/sbin/httpd, where a stack-based buffer overflow can be triggered remotely. The vulnerability is described across multiple sources as ena...

9CVSS7.2AI score0.00738EPSS
Exploits0References5
Cvelist
Cvelist
added yesterday21 views

CVE-2026-15547 Shibby Tomato CIFS Mount sub_2D048 os command injection

A weakness has been identified in Shibby Tomato up to 1.28.0000. This affects the function sub2D048 of the component CIFS Mount Handler. Executing a manipulation of the argument cifs1/cifs2 can lead to os command injection. The attack can be executed remotely. The exploit has been made available ...

6.5CVSS0.0105EPSS
Exploits0References5
CVE
CVE
added yesterday11 views

CVE-2026-15547

Shibby Tomato (up to 1.28.0000) contains a vulnerability in the CIFS Mount Handler sub_2D048 that allows remote OS command injection by manipulating the cifs1/cifs2 arguments. A public exploit exists; impact is described with network access and low privileges. The project is superseded by FreshTo...

6.5CVSS6.4AI score0.0105EPSS
Exploits0References5
NVD
NVD
added yesterday6 views

CVE-2026-15544

A vulnerability was determined in Shibby Tomato up to 1.28.0000. Affected is the function getupsvar of the file www/apcupsd/tomatodata.cgi of the component apcupsd. This manipulation of the argument Field causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has be...

9CVSS0.00438EPSS
Exploits0References5
Cvelist
Cvelist
added yesterday20 views

CVE-2026-15546 Shibby Tomato start_jffs2 sub_2D568 os command injection

A security flaw has been discovered in Shibby Tomato up to 1.28.0000. Affected by this issue is the function sub2D568 of the component startjffs2. Performing a manipulation of the argument jffs2exec results in os command injection. Remote exploitation of the attack is possible. The exploit has be...

6.5CVSS0.0105EPSS
Exploits0References5
CVE
CVE
added yesterday8 views

CVE-2026-15546

The CVE-2026-15546 entry describes a remote OS command injection in Shibby Tomato up to 1.28.0000. Affected component: start_jffs2, function sub_2D568. Exploitation involves manipulating the argument jffs2_exec; exploit is public and may be used for attacks. CVSS data indicate network access with...

6.5CVSS6.3AI score0.0105EPSS
Exploits0References5
Cvelist
Cvelist
added yesterday21 views

CVE-2026-15545 Shibby Tomato apcupsd tomatodata.cgi main out-of-bounds write

A vulnerability was identified in Shibby Tomato up to 1.28.0000. Affected by this vulnerability is the function main of the file www/apcupsd/tomatodata.cgi of the component apcupsd. Such manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit is publicly...

9CVSS0.00396EPSS
Exploits0References5
CVE
CVE
added yesterday12 views

CVE-2026-15545

CVE-2026-15545 concerns Shibby Tomato versions up to 1.28.0000. The vulnerability affects the component apcupsd, specifically the function main in the file www/apcupsd/tomatodata.cgi, causing an out-of-bounds write. The description indicates a remote attack vector, with a publicly available explo...

9CVSS6.7AI score0.00396EPSS
Exploits0References5
Cvelist
Cvelist
added yesterday20 views

CVE-2026-15544 Shibby Tomato apcupsd tomatodata.cgi getupsvar stack-based overflow

A vulnerability was determined in Shibby Tomato up to 1.28.0000. Affected is the function getupsvar of the file www/apcupsd/tomatodata.cgi of the component apcupsd. This manipulation of the argument Field causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has be...

9CVSS0.00438EPSS
Exploits0References5
CVE
CVE
added yesterday8 views

CVE-2026-15544

The CVE-2026-15544 entry concerns Shibby Tomato (up to 1.28.0000) with the apcupsd component. The vulnerability affects the function getupsvar in the file www/apcupsd/tomatodata.cgi, where manipulation of the Field argument leads to a stack-based buffer overflow. The issue can be triggered remote...

9CVSS7.4AI score0.00438EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago6 views

PT-2026-57618

A vulnerability was identified in Shibby Tomato up to 1.28.0000. Affected by this vulnerability is the function main of the file www/apcupsd/tomatodata.cgi of the component apcupsd. Such manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit is publicly...

9CVSS6.7AI score0.00396EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-57619

Name of the Vulnerable Software and Affected Versions Shibby Tomato versions prior to 1.28.0000 Description A stack-based buffer overflow exists in the DNS List Rendering component within the /usr/sbin/httpd file. The issue occurs in the sub 407220 function and can be exploited remotely. A...

9CVSS7.3AI score0.00738EPSS
Exploits0References7
Rows per page
Query Builder