CVE-2026-42469 - Vulnerability Analysis
HighCVSS: 8.6Last Updated: May 1, 2026
Open Vehicle Monitoring System 3 - Buffer Overflow
Published: May 1, 2026Updated: May 1, 2026Remote Exploitable
Overview
Open Vehicle Monitoring System 3 (OVMS3) 3.3.005 contains a buffer overflow caused by improper validation of CANswitch DLC value in canformat_canswitch.cpp, letting remote attackers cause denial of service or execute arbitrary code via crafted CANswitch frames.
Severity & Score
Severity: High
CVSS Score: 8.6
Impact
Remote attackers can cause denial of service or execute arbitrary code, potentially compromising the system.
Mitigation
Update to the latest version of Open Vehicle Monitoring System 3.
Related Resources
Details
- CVE ID
- CVE-2026-42469
- Severity
- High
- CVSS Score
- 8.6
- Type
- buffer_overflow
- Status
- new
CWE
- CWE-121
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H