CVE-2026-7834 | EFM ipTIME NAS1dual 1.5.24 misc_main.cgi get_csrf_whites stack-based overflow

Inserito da Angelo Barbosa | Mag 5, 2026 | CVE

A vulnerability labeled as critical has been found in EFM ipTIME NAS1dual 1.5.24. This issue affects the function get_csrf_whites of the file /cgi/advanced/misc_main.cgi. Such manipulation leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2026-7834. The attack can be launched remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-7834 | EFM ipTIME NAS1dual 1.5.24 misc_main.cgi get_csrf_whites stack-based overflow

Post correlati

CVE-2025-68840 | iRobots.txt SEO Plugin up to 1.1.2 on WordPress cross site scripting

CVE-2024-9897 | StreamWeasels Twitch Integration Plugin up to 1.8.6 on WordPress Shortcode sw-twitch-embed cross site scripting

CVE-2024-8341 | SourceCodester Petshop Management System 1.0 add_user.php avatar unrestricted upload

CVE-2023-50863 | Kashipara Group Travel Website 1.0 generateReceipt.php hotelIDHidden sql injection