CVE-2026-28522 | Tuya arduino-TuyaOpen up to 1.2.0 WiFiUDP null pointer dereference

Inserito da Angelo Barbosa | Mar 15, 2026 | CVE

A vulnerability has been found in Tuya arduino-TuyaOpen up to 1.2.0 and classified as problematic. The affected element is an unknown function of the component WiFiUDP. The manipulation leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2026-28522. The attack can only be initiated within the local network. No exploit exists.

The affected component should be upgraded.

CVE-2026-28522 | Tuya arduino-TuyaOpen up to 1.2.0 WiFiUDP null pointer dereference

Post correlati

CVE-2024-42645 | halfgaar FlashMQ 1.14.0 Retain Message denial of service

CVE-2024-0298 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setDiagnosisCfg ip os command injection

CVE-2023-52595 | Linux Kernel up to 6.7.3 rt2x00 ieee80211_restart_hw deadlock

CVE-2023-45744 | Peplink Smart Reader 1.2.0 Web Interface upload_config.cgi access control (TALOS-2023-1866)