High severity8.6NVD Advisory· Published May 1, 2026· Updated May 7, 2026

CVE-2026-42469

Description

Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_canswitch.cpp the parser does not properly validate a CANswitch DLC value, allowing remote attackers to cause a denial of service or possibly execute arbitrary code via crafted CANswitch frames.

Affected products

Openvehicles/Open Vehicle Monitoring System 3references

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gist.github.com/sgInnora/f4ac66faeefe07a653ceeb3f58cdc381nvd
github.com/openvehicles/Open-Vehicle-Monitoring-System-3/issues/1391nvd

News mentions

No linked articles in our index yet.

cvss	0.559
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000