Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-hm83-nh9x-27ay |
|---|
| Summary | BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a crash (SIGABRT) when processing string literals longer than the buffer limit. The tokenizer_string function in src/bacnet/basic/program/ubasic/tokenizer.c incorrectly handles null termination for maximum-length strings. It writes a null byte to dest[40] when the buffer size is only 40 (indices 0-39), triggering a stack overflow. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
|
|---|
| References |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21870 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00531 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
7e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00538 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
7e-05 |
| scoring_system |
epss |
| scoring_elements |
0.0053 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
7e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00528 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-21870 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
|---|
| Weaknesses |
| 0 |
| cwe_id |
193 |
| name |
Off-by-one Error |
| description |
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value. |
|
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 5.5 - 5.5 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-hm83-nh9x-27ay |
|---|