openwrt

Top products

The 15 most recently published vulnerabilities affecting openwrt.

• CVE-2026-32721LuCI luci-mod-network: Possible XSS attack in WiFi scan on Joining Wireless Client modal8.6Mar 19, 2026
• CVE-2026-30874OpenWrt procd PATH Environment Variable Filter Bypass via Incorrect String Comparison Leads to Privilege Escalation7.8Mar 19, 2026
• CVE-2026-30873OpenWrt Project jsonpath: Memory leak when processing strings, labels, and regexp tokens4.9Mar 19, 2026
• CVE-2026-30872OpenWrt Project has a Stack-based Buffer Overflow vulnerability via IPv6 reverse DNS lookup9.8Mar 19, 2026
• CVE-2026-30871OpenWrt Project has Stack-based Buffer Overflow in DNS PTR Query9.8Mar 19, 2026
• CVE-2026-20435In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no ...4.6Mar 2, 2026
• CVE-2026-20430In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privilege...8.8Mar 2, 2026
• CVE-2026-20419In wlan AP/STA firmware, there is a possible system becoming irresponsive due to an uncaught exception. This could lead to remote (proximal/adjacent) denial of service with no additional execution ...6.5Feb 2, 2026
• CVE-2026-20408In wlan, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed....8.8Feb 2, 2026
• CVE-2025-20765In aee daemon, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction ...4.7Dec 2, 2025
• CVE-2025-20748In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System pr...6.7Nov 4, 2025
• CVE-2025-20741In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System pr...6.7Nov 4, 2025
• CVE-2025-20747In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System priv...6.7Nov 4, 2025
• CVE-2025-20746In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System priv...6.7Nov 4, 2025
• CVE-2025-20739In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System pr...6.7Nov 4, 2025