CVE-2026-28525 | sbabic swupdate up to 2025.12 mongoose_multipart.c mg_http_multipart_continue_wait_for_chunk integer underflow

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability classified as problematic has been found in sbabic swupdate up to 2025.12. This impacts the function mg_http_multipart_continue_wait_for_chunk of the file mongoose_multipart.c. The manipulation leads to integer underflow.

This vulnerability is referenced as CVE-2026-28525. Remote exploitation of the attack is possible. No exploit is available.

It is suggested to install a patch to address this issue.

CVE-2026-28525 | sbabic swupdate up to 2025.12 mongoose_multipart.c mg_http_multipart_continue_wait_for_chunk integer underflow

Post correlati

CVE-2024-34124 | Adobe Dimension up to 3.4.11 out-of-bounds write (apsb24-47)

CVE-2024-13456 | nmedia Easy Quiz Maker Plugin up to 2.0 on WordPress Shortcode wqt-question cross site scripting

CVE-2024-2740 | Planet IGS-4215-16T2S 1.305b210528 Web Interface information disclosure

CVE-2024-4553 | WP Shortcodes Plugin up to 7.1.5 on WordPress Shortcode su_members cross site scripting