CVE-2026-48682
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-48682
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simple_packet_parser_ng.cpp, after validating that the packet contains at least sizeof(ipv4_header_t) bytes (20 bytes), the code advances the local_pointer by '4 * ipv4_header->get_ihl()' (line 164) without validating that (a) IHL >= 5 (the minimum valid value per RFC 791), or (b) 4 * IHL bytes are actually available in the packet. The IHL field is 4 bits, allowing values 0-15, so the advance can be 0-60 bytes. An IHL value of 15 with only 20 bytes validated causes a 40-byte over-read. An IHL of 0-4 causes the pointer to not advance past the IP header, resulting in the TCP/UDP header being parsed from IP header data (type confusion). This vulnerability is reachable via any packet capture interface.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2026-48682
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-48682
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-48682 (1)
Security Blog Posts for CVE-2026-48682 (1)
Other References for CVE-2026-48682 (1)
Same Patch Batch · n/a · 2026-06-02 · 16 CVEs total
| CVE-2026-10608 | 7.3 HIGH | DedeCMS carbuyaction.php RemoveXSS sql injection |
| CVE-2026-10607 | 7.3 HIGH | DedeCMS flink.php dede_htmlspecialchars sql injection |
| CVE-2026-10606 | 7.3 HIGH | DedeCMS Feedback feedback.php TrimMsg sql injection |
| CVE-2026-10581 | 6.3 MEDIUM | DedeCMS download.php base64_decode server-side request forgery |
| CVE-2026-10565 | 3.1 LOW | Open5GS NGAP Handover gmm-sm.c gmm_state_security_mode race condition |
| CVE-2026-35717 | VIVOTEK FD8136栈溢出漏洞 | |
| CVE-2026-35716 | VIVOTEK FD8136栈缓冲区溢出漏洞 | |
| CVE-2026-35718 | VIVOTEK FD8136-VVTK 0300a路径遍历漏洞 | |
| CVE-2026-38978 | Transmission 4.1.1 WebUI/RPC 点击劫持漏洞 | |
| CVE-2026-30652 | Vivotek FD8136固件远程缓冲区溢出漏洞 | |
| CVE-2026-30649 | VIVOTEK FD8136-VVTK-0300a CGI缓冲区溢出导致任意代码执行 | |
| CVE-2026-30650 | Vivotek FD8136 VVTK-0300a远程代码执行漏洞 | |
| CVE-2026-38967 | Crow HTTP响应头注入漏洞(v1.3.1及以下) | |
| CVE-2026-30586 | Memos v0.26.0 存储型跨站脚本漏洞 | |
| CVE-2026-33553 | CFEngine Enterprise 3.24.x/3.27.x跨站脚本漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-10608
DedeCMS carbuyaction.php RemoveXSS sql injection - CVE-2026-10607
DedeCMS flink.php dede_htmlspecialchars sql injection - CVE-2026-10606
DedeCMS Feedback feedback.php TrimMsg sql injection - CVE-2026-10581
DedeCMS download.php base64_decode server-side request forge - CVE-2026-10565
Open5GS NGAP Handover gmm-sm.c gmm_state_security_mode race
V. Comments for CVE-2026-48682
No comments yet