CVE 8.7 HIGH

GALAYOU Y4 Web Server buffer overflow_CVE-2026-12192

June 14, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local network. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Buffer overflow vulnerability in the Web Server component of GALAYOU Y4

Basic Information

ID CVE-2026-12192

Source VulDB

Published Jun 14, 2026 at 23:15

Affected Product

Vendor GALAYOU

Product Y4

Version 1.0.0

Affected Versions GALAYOU Y4 1.0.0

CWE Classification

CWE-120 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor GALAYOU

Product Y4 Web Server

Version 1.0.0

References

{
    "lastseen": "",
    "description": "A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local network. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-06-14T23:15:09.375Z",
    "modified": "2026-06-14T23:15:09.375Z",
    "type": "cve",
    "title": "GALAYOU Y4 Web Server buffer overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/370838\nhttps://vuldb.com/vuln/370838/cti\nhttps://vuldb.com/cve/CVE-2026-12192\nhttps://vuldb.com/submit/825801",
    "id": "CVE-2026-12192",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "GALAYOU Y4 1.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Y4",
    "version": "1.0.0",
    "vendor": "GALAYOU",
    "ai_description": "Buffer overflow vulnerability in the Web Server component of GALAYOU Y4",
    "ai_severity": "High",
    "ai_vendor": "GALAYOU",
    "ai_product": "Y4 Web Server",
    "ai_version": "1.0.0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply