CVE-2026-28520 | Tuya arduino-TuyaOpen up to 1.2.0 WiFiMulti off-by-one

Inserito da Angelo Barbosa | Mar 15, 2026 | CVE

A vulnerability, which was classified as critical, was found in Tuya arduino-TuyaOpen up to 1.2.0. Impacted is an unknown function of the component WiFiMulti. Executing a manipulation can lead to off-by-one.

This vulnerability is handled as CVE-2026-28520. It is possible to launch the attack on the local host. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-28520 | Tuya arduino-TuyaOpen up to 1.2.0 WiFiMulti off-by-one

Post correlati

CVE-2025-0696 | Cesanta Frozen up to 1.6 JSON null pointer dereference

CVE-2024-21306 | Microsoft Windows up to Server 2022 23H2 Bluetooth Driver unknown vulnerability

Ivanti Secure Access Client Request Local Privilege Escalation

CVE-2024-12757 | Nedap Librix Ecoreader missing authentication (icsa-25-007-02)