CVE-2026-10124

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.8 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_ipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer.

Vulnerability Details

Published Date

May 30, 2026

Last Modified

May 30, 2026

CWE ID

CWE-119

Source

NVD

Vendor

Shibby

Product

Tomato

External References

https://gitee.com/Fengyi-Wang/CVE/issues/IJ9FFG
https://vuldb.com/submit/818239
https://vuldb.com/vuln/367301
https://vuldb.com/vuln/367301/cti

CVE-2026-10124

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment