Skip to content
Threat Feed

Vendor

Shibby

4 briefs RSS
high advisory

Shibby Tomato Router Firmware Stack-Based Buffer Overflow (CVE-2026-15548)

A critical stack-based buffer overflow vulnerability (CVE-2026-15548) exists in Shibby Tomato router firmware versions up to 1.28.0000, specifically in the `sub_407220` function of the `/usr/sbin/httpd` component related to DNS List Rendering, allowing remote attackers to achieve high impact on confidentiality, integrity, and availability.

Tomato router firmware buffer-overflow rce CVE-2026-15548
2t 1c
high advisory

Shibby Tomato Firmware Vulnerability CVE-2026-15545 Leads to Remote Out-of-Bounds Write

A critical out-of-bounds write vulnerability (CVE-2026-15545) exists in Shibby Tomato firmware up to version 1.28.0000, specifically within the `main` function of the `www/apcupsd/tomatodata.cgi` file in the `apcupsd` component, which can be exploited remotely with a publicly available exploit, posing a significant risk to affected network devices.

Tomato vulnerability firmware router out-of-bounds-write CVE
2t 1c
high threat

Shibby Tomato Firmware Vulnerability CVE-2026-15544 Enables Remote Code Execution

A stack-based buffer overflow vulnerability, identified as CVE-2026-15544, exists in the `getupsvar` function within the `www/apcupsd/tomatodata.cgi` file of the `apcupsd` component in Shibby Tomato firmware versions up to and including 1.28.0000, allowing a remote attacker to achieve arbitrary code execution by manipulating the `Field` argument.

exploited Tomato buffer-overflow rce firmware router cve
2t 1c
high threat

Shibby Tomato Stack-Based Buffer Overflow Vulnerability (CVE-2026-10124)

A stack-based buffer overflow vulnerability exists in Shibby Tomato up to version 1.28 in the rip_zebra_read_ipv4 function within the /usr/sbin/ripd component (Zserv Handler), allowing a remote attacker to execute arbitrary code.

Tomato +1 cve buffer-overflow router
2r 1t 1c