Medium severity6.5NVD Advisory· Published Mar 16, 2026· Updated May 26, 2026
CVE-2026-28522
CVE-2026-28522
Description
arduino-TuyaOpen before version 1.2.1 contains a null pointer dereference vulnerability in the WiFiUDP component. An attacker on the same local area network can send a large volume of malicious UDP packets that trigger a null pointer dereference, resulting in a denial-of-service condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Tuya/arduino-TuyaOpenv5Range: 0
Patches
Vulnerability mechanics
References
2- src.tuya.com/announcement/32nvdVendor Advisory
- www.vulncheck.com/advisories/arduino-tuyaopen-wifiudp-null-pointer-dereference-denial-of-servicenvdThird Party Advisory
News mentions
0No linked articles in our index yet.