🛡️ CVE-2026-3868
⚪ Unknown ✅ No Known Exploit CWE-130 NVD
N/A
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

An improper handling of the length parameter inconsistency vulnerability has been identified in Moxa’s Secure Router. Because of improper validation of length parameters in the HTTPS management interface, an unauthenticated remote attacker could send specially crafted requests that trigger a buffer overflow condition, causing the web service to become unresponsive. Successful exploitation may result in a denial-of-service condition requiring a device reboot to restore normal operation. While successful exploitation can severely impact the availability of the affected device, no impact to the confidentiality or integrity of the affected product has been identified. Additionally, no confidentiality, integrity, or availability impact to the subsequent system has been identified.

Details

Severity Unknown
CVSS Score N/A
CVSS Vector N/A
CWE CWE-130
Public Exploit âś… No
Source NVD
Published 2026-04-27
Updated 2026-06-02
Modified 2026-04-27
Fix URL N/A

Affected Packages

Software From version Fixed in
unknown — —

Similar Threats

Patch Gap Protection

Running software with known vulnerabilities?

BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.

Start Free →

No credit card required  Â·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.