Security Vulnerabilities
Memory Corruption when adding user-supplied data without checking available buffer space.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02
Memory Corruption when processing invalid user address with nonstandard buffer address.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02
ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.0 and prior, due to insufficient validation or restriction of target URLs, an authenticated local user can craft requests that target internal IP addresses (e.g., 127.0.0.1, localhost, or private network ranges). This allows the attacker to interact with internal HTTP/HTTPS services that are not intended to be exposed externally or to local users. No known patch is publicly available.
CVSS Score
7.1
EPSS Score
0.0
Published
2026-03-02
An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23_multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability.
CVSS Score
7.5
EPSS Score
0.0
Published
2026-03-02
Memory Corruption when accessing trusted execution environment without proper privilege check.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02
Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
CVSS Score
7.2
EPSS Score
0.0
Published
2026-03-02
Transient DOS when MAC configures config id greater than supported maximum value.
CVSS Score
6.5
EPSS Score
0.0
Published
2026-03-02
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-03-02