CVE-2026-38570 | bacnet_stack 1.3.1 bacnet_tag_number_decode out-of-bounds (ID 1270)

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability classified as problematic was found in bacnet_stack 1.3.1. The affected element is the function bacnet_tag_number_decode. Such manipulation leads to out-of-bounds read.

This vulnerability is documented as CVE-2026-38570. The attack requires being on the local network. There is not any exploit available.

CVE-2026-38570 | bacnet_stack 1.3.1 bacnet_tag_number_decode out-of-bounds (ID 1270)

Post correlati

CVE-2024-45550 | Qualcomm Snapdragon Compute FastConnect 6900 up to WSA8845 IOCTL Call array index

CVE-2025-6767 | sfturing hosp_order up to 627f426331da8086ce8fff2017d65b1ddef384f8 DoctorServiceImpl.java findDoctorByCondition hospitalName sql injection (Issue 109)

CVE-2025-14501 | Santesoft Sante PACS Server HTTP Header Content-Length null pointer dereference (ZDI-25-1104)

CVE-2024-37573 | Talkatone com.talkatone.android 8.4.6 on Android permission