CVE Catalog

CVE-2026-10829

HighCVSS 8.6
Published: Updated: Translated: NVD NIST

Summary

A stack-based buffer overflow vulnerability has been found in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and earlier. This vulnerability stems from insufficient input validation of user-supplied input in the 'Server location' parameter on the Basic settings page.

Risk Assessment

An attacker could exploit this vulnerability by sending crafted input to the web service, resulting in memory corruption. Successful exploitation of this vulnerability could allow remote code execution on the target system with root privileges.

Recommendation

It is recommended to update to the latest version of the software to mitigate this vulnerability. Additionally, implementing further input validation mechanisms is advisable.

Original NVD description (English source)

A stack-based buffer overflow vulnerability has been found in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and earlier. This vulnerability stems from insufficient input validation of user-supplied input in the "Server location" parameter on the Basic settings page. An attacker could exploit this vulnerability by sending crafted input to the web service, resulting in memory corruption. Successful exploitation of this vulnerability could allow remote code execution on the target system with root privileges.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS