CVE-2026-13592 | liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4 EtherNet IP Message BufWriter::append out-of-bounds write (Issue 48)

A vulnerability marked as critical has been reported in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4. Affected by this issue is the function BufWriter::append of the component EtherNet IP Message Handler. Performing a manipulation results in out-of-bounds write.

This vulnerability is known as CVE-2026-13592. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. To fix this issue, it is recommended to deploy a patch.

CVE-2026-13592 | liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4 EtherNet IP Message BufWriter::append out-of-bounds write (Issue 48)

Post correlati

CVE-2024-31412 | Omron CX-Programmer up to 9.81 out-of-bounds (OMSR-2024-003)

CVE-2025-4497 | code-projects Simple Banking System up to 1.0 Sign In password2 buffer overflow

CVE-2024-12926 | Codezips Project Management System 1.0 advanced.php name sql injection

CVE-2024-48259 | Cloudlog 2.6.15 Oqrs.php station_id/callsign sql injection