CVE-2026-28521 | Tuya arduino-TuyaOpen up to 1.2.0 TuyaIoT out-of-bounds

Inserito da Angelo Barbosa | Mar 15, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Tuya arduino-TuyaOpen up to 1.2.0. This issue affects some unknown processing of the component TuyaIoT. Performing a manipulation results in out-of-bounds read.

This vulnerability is known as CVE-2026-28521. Attacking locally is a requirement. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-28521 | Tuya arduino-TuyaOpen up to 1.2.0 TuyaIoT out-of-bounds

Post correlati

CVE-2024-12881 | PlugVersions Plugin up to 0.0.7 on WordPress File authorization

CVE-2024-46683 | Linux Kernel up to 6.10.7 DRM use after free (10081b0b0ed2/730b72480e29)

CVE-2025-40889 | Nozomi Guardian/CMC up to 25.1.x Time Machine /data path traversal

CVE-2024-1125 | EventPrime Plugin up to 3.4.3 on WordPress Post authorization