๐Ÿ” CVE Alert

CVE-2026-15545

HIGH 8.8

Shibby Tomato apcupsd tomatodata.cgi main out-of-bounds write

CVSS Score
8.8
EPSS Score
0.4%
EPSS Percentile
32th

A vulnerability was identified in Shibby Tomato up to 1.28.0000. Affected by this vulnerability is the function main of the file www/apcupsd/tomatodata.cgi of the component apcupsd. Such manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit is publicly available and might be used. This project is superseded by FreshTomato.

CWE CWE-787 CWE-119
Vendor shibby
Product tomato
Published Jul 13, 2026
Last Updated Jul 13, 2026
Stay Ahead of the Next One

Get instant alerts for shibby tomato

Be the first to know when new high vulnerabilities affecting shibby tomato are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Shibby / Tomato
1.0 1.1 1.2 1.3 1.4 1.5 1.6 1.7 1.8 1.9 1.10 1.11 1.12 1.13 1.14 1.15 1.16 1.17 1.18 1.19 1.20 1.21 1.22 1.23 1.24 1.25 1.26 1.27 1.28.0000

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
vuldb.com: https://vuldb.com/vuln/377895 vuldb.com: https://vuldb.com/vuln/377895/cti vuldb.com: https://vuldb.com/cve/CVE-2026-15545 vuldb.com: https://vuldb.com/submit/855114 gitee.com: https://gitee.com/Fengyi-Wang/CVE/issues/IJTQ5N

Credits

VulDB Gitee Analyzer VulDB CNA Team