CVE-2026-10872 in Tomatoالمعلومات

الملخص

بحسب MITRE • 05/06/2026

A vulnerability was found in Shibby Tomato 1.28.0000. This issue affects the function start_vpnserver of the file /sbin/rc of the component Web UI. Performing a manipulation results in os command injection. The attack can be initiated remotely. The exploit has been made public and could be used. This project is superseded by FreshTomato.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

إفشاء

05/06/2026

الاعتدال

تمت الموافقة

إدخال

VDB-368362

CPE

جاهز

CWE

CWE-78 (مؤكد)

استغلال

تحميل

CVSS

7.2 (VulDB)

EPSS

0.00000

KEV

لا

النشاطات

منخفض

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-10872
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-10872
CVE Details	https://www.cvedetails.com/cve/CVE-2026-10872/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!