CyberRota
← Ana sayfaya dön

CVE-2026-48715

HIGH · CVSS 8.8 EPSS %0.20 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-19T20:16:17.663 · Çekilme zamanı: 2026-06-30T18:28:23.217891+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

GitHub PoC Linkleri
github.com github.com

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-48715
Severity
HIGH
CVSS
8.8
EPSS
%0.20

Orijinal NVD Açıklaması

radvd is a router advertisement daemon for IPv6. Prior to version 2.21, the `radvdump` utility shipped with radvd contains a stack buffer overflow in the Route Information option parser. When processing a crafted ICMPv6 Router Advertisement, `print_ff()` copies up to 2032 bytes from attacker-controlled packet data into a 16-byte `struct in6_addr` on the stack, overflowing by up to 2016 bytes. Note that the main `radvd` daemon is not affected by the vulnerability. Version 2.21 patches the issue.