VYPR
Unrated severityNVD Advisory· Published Mar 15, 2026· Updated Mar 16, 2026

arduino-TuyaOpen WiFiMulti Single-Byte Buffer Overflow Remote Code Execution

CVE-2026-28520

Description

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. When the victim's smart hardware connects to an attacker-controlled AP hotspot, the attacker can exploit the overflow to execute arbitrary code on the affected embedded device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • Tuya/arduino-TuyaOpenv5
    Range: 0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.