CVE-2026-8232
LOWDotouch XproUPF UPF Process libvlib.so vlib_worker_loop denial of service
Title source: cnaDescription
A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.so of the component UPF Process. The manipulation results in denial of service. The vendor was contacted early about this disclosure.
References (3)
Core 3
Core References
Vdb Entry, Technical Description vdb-entry
technical-description
VDB-362449 | Dotouch XproUPF UPF Process libvlib.so vlib_worker_loop denial of service
https://vuldb.com/vuln/362449
Signature, Permissions Required signature
permissions-required
VDB-362449 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/362449/cti
Third Party Advisory third-party-advisory
Submit #808794 | Dotouch XproUPF v2.0.0-release-088aa7c4 Denial of Service
https://vuldb.com/submit/808794
Scores
CVSS v3
3.5
EPSS
0.0019
EPSS Percentile
8.7%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-404
Status
published
Products (1)
Dotouch/XproUPF
2.0.0-release-088aa7c4
Published
May 10, 2026
Tracked Since
May 10, 2026