Theo Arends

2 exploits Active since May 2026
CVE-2026-38426 WRITEUP HIGH WRITEUP
Tasmota < 15.3.0.3 - Buffer Overflow via xdrv_10_scripter.ino strcpy Function
Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the xdrv_10_scripter.ino, fetch_jpg(), jpg_task.boundary[40], strcpy() function.
CVSS 7.3
CVE-2026-38427 WRITEUP HIGH WRITEUP
Tasmota through 15.3.0.3 - Heap Buffer Overflow in fetch_jpg()
An issue in fetch_jpg() in xdrv_10_scripter.ino in Tasmota through 15.3.0.3 allows a remote attacker to cause heap buffer overflow. The Content-Length from a JPEG stream is stored in a uint16_t variable; values above 65535 wrap around, causing allocation of a smaller buffer than the data actually read.
CVSS 7.3