CVE-2026-26264 | bacnet-stack BACnet Stack up to 1.4.3rc1/1.5.0rc3 wp.c wp_decode_service_request out-of-bounds (GHSA-phjh-v45p-gmjj)

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability was found in bacnet-stack BACnet Stack up to 1.4.3rc1/1.5.0rc3. It has been rated as problematic. Impacted is the function wp_decode_service_request of the file wp.c. Performing a manipulation results in out-of-bounds read.

This vulnerability was named CVE-2026-26264. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-26264 | bacnet-stack BACnet Stack up to 1.4.3rc1/1.5.0rc3 wp.c wp_decode_service_request out-of-bounds (GHSA-phjh-v45p-gmjj)

Post correlati

CVE-2025-4313 | SourceCodester Advanced Web Store 1.0 admin_addnew_product.php txtProdId sql injection

CVE-2020-10368 | BlueZ Firmware Update Spectra information disclosure

CVE-2024-2050 | Schneider Electric Easergy T200 cross site scripting (SEVD-2024-072-01)

CVE-2025-20108 | Intel Network Adapter Driver Installer up to 29.3 on Win11 uncontrolled search path (intel-sa-01293)