Critical severity10.0NVD Advisory· Published May 1, 2026· Updated May 20, 2026
CVE-2026-37541
CVE-2026-37541
Description
Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers to cause a denial of service or possibly execute arbitrary code via crafted GVRET frames.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 3.3.005
Patches
Vulnerability mechanics
References
2- gist.github.com/sgInnora/f4ac66faeefe07a653ceeb3f58cdc381nvdThird Party Advisory
- github.com/openvehicles/Open-Vehicle-Monitoring-System-3/issues/1393nvdIssue Tracking
News mentions
0No linked articles in our index yet.