Shibby Tomato miniupnpd resource consumption_CVE-2026-10069

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X

Description

A vulnerability has been found in Shibby Tomato 1.28. The impacted element is an unknown function of the file usr/sbin/miniupnpd. Such manipulation leads to resource consumption. The attack may be launched remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer.

Basic Information

ID CVE-2026-10069

Source VulDB

Published May 29, 2026 at 16:00

Affected Product

Vendor Shibby

Product Tomato

Version 1.28

Affected Versions Shibby Tomato 1.28

CWE Classification

CWE-400 CWE-404

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Shibby Tomato 1.28. The impacted element is an unknown function of the file usr/sbin/miniupnpd. Such manipulation leads to resource consumption. The attack may be launched remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer.",
    "published": "2026-05-29T16:00:12.420Z",
    "modified": "2026-05-29T16:00:12.420Z",
    "type": "cve",
    "title": "Shibby Tomato miniupnpd resource consumption",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/367155\nhttps://vuldb.com/vuln/367155/cti\nhttps://vuldb.com/submit/818238\nhttps://gitee.com/Fengyi-Wang/CVE/issues/IJD8SP",
    "id": "CVE-2026-10069",
    "bulletinFamily": "",
    "cwe": [
        "CWE-400",
        "CWE-404"
    ],
    "cvelist": null,
    "sourceData": "Shibby Tomato 1.28",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Tomato",
    "version": "1.28",
    "vendor": "Shibby",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}