CVE-2026-8369— Improper Input Validation in OpenThread NAT64 Translator
Possible ATT&CK Techniques 1AI
T1564.004 · NTFS File AttributesAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The OpenThread Authors | OpenThread | commit 26a882d | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-8369
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Input Validation in OpenThread NAT64 Translator
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper Input Validation in the NAT64 translator in The OpenThread Authors OpenThread before commit 26a882d on all platforms allows an attacker on the adjacent IPv4 network to inject corrupted IPv6 packets into the Thread mesh or bypass security checks via crafted IPv4 packets with options.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenThread 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenThread是OpenThread开源的一个开源实现的Thread网络协议栈。 OpenThread 26a882d之前版本存在输入验证错误漏洞,该漏洞源于NAT64转换器中输入验证不当,可能导致相邻IPv4网络上的攻击者通过特制的IPv4选项数据包注入损坏的IPv6数据包或绕过安全检查。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| The OpenThread Authors | OpenThread | commit 26a882d | - |
II. Public POCs for CVE-2026-8369
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-8369
请登录查看更多情报信息。
IV. Related Vulnerabilities
V. Comments for CVE-2026-8369
No comments yet