CVE-2026-6581 | H3C Magic B1 up to 100R004 /goform/aspForm SetMobileAPInfoById param buffer overflow

Inserito da Angelo Barbosa | Apr 19, 2026 | CVE

A vulnerability marked as critical has been reported in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a manipulation of the argument param results in buffer overflow.

This vulnerability is known as CVE-2026-6581. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-6581 | H3C Magic B1 up to 100R004 /goform/aspForm SetMobileAPInfoById param buffer overflow

Post correlati

CVE-2024-5345 | Responsive Owl Carousel for Elementor Plugin up to 1.2.0 on WordPress file inclusion

CVE-2025-66432 | Oxide Omicron up to 17.0 API Token unprotected alternate channel

CVE-2024-21780 | KDDI Home Spot Cube2 up to 102 Command stack-based overflow

CVE-2024-54523 | Apple iOS/iPadOS memory corruption