CVE-2026-48685
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-48685
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgp_protocol.hpp, the parse_raw_bgp_attribute() function correctly identifies when extended_length_bit is set and sets length_of_length_field to 2, but then reads only a single byte for the attribute value length (attribute_value_length = value[2] at line 173). Per RFC 4271 Section 4.3, when the Extended Length bit is set, the Attribute Length field is two octets and the value should be read as a 16-bit big-endian integer from value[2] and value[3]. As a result, any attribute longer than 255 bytes has its length silently truncated to the low byte (e.g., 300 bytes = 0x012C is read as 0x2C = 44 bytes). The remaining 256 bytes are then misinterpreted as subsequent attributes, causing cascading parse failures and potential out-of-bounds memory access.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2026-48685
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-48685
请登录查看更多情报信息。
Security Blog Posts for CVE-2026-48685 (1)
Other References for CVE-2026-48685 (1)
Same Patch Batch · n/a · 2026-05-26 · 31 CVEs total
| CVE-2026-9496 | 7.5 HIGH | pacote 11.2.7 DoS漏洞 |
| CVE-2026-9580 | 7.3 HIGH | JeecgBoot selectDepart LoginController.selectDepart access control |
| CVE-2026-9495 | 7.3 HIGH | @koa/router 14.0.0-15.0.0 访问控制绕过 |
| CVE-2026-9581 | 6.3 MEDIUM | JeecgBoot add access control |
| CVE-2026-9579 | 6.3 MEDIUM | JeecgBoot SysUser userEdit user.getUsername access control |
| CVE-2026-9541 | 5.3 MEDIUM | Squirrel Cnut File sqobject.cpp ReadObject heap-based overflow |
| CVE-2026-9568 | 5.0 MEDIUM | ThingsBoard YAML provision getGatewayDockerComposeFile code injection |
| CVE-2026-9604 | 4.3 MEDIUM | JeecgBoot AiragModelController access control |
| CVE-2026-9567 | 3.3 LOW | GPAC MP4Box isom_intern.c MergeFragment null pointer dereference |
| CVE-2026-9572 | 3.3 LOW | GPAC MP4Box media.c Media_GetSample memory leak |
| CVE-2025-68711 | AppLockZ 4.2.11 绕过PIN锁致信息泄露 | |
| CVE-2025-68708 | SailingLab AppLock 4.3.8应用绕过漏洞 | |
| CVE-2026-36239 | PbootCMS v3.2.11 站点配置代码注入漏洞 | |
| CVE-2025-68710 | Easyelife App lock 1.9.2 覆盖绕过导致信息泄露 | |
| CVE-2025-68709 | Android AppLock 4.3.8 远程代码执行漏洞 | |
| CVE-2026-48689 | FastNetMon <1.2.9 堆溢出漏洞 | |
| CVE-2026-48694 | FastNetMon Community Edition配置注入致路由器沦陷 | |
| CVE-2026-48695 | FastNetMon ≤1.2.9 MikroTik插件命令注入漏洞 | |
| CVE-2026-48696 | FastNetMon 1.2.9及之前版本存在缓冲区溢出漏洞 | |
| CVE-2026-48697 | FastNetMon <1.2.9 TLS证书验证缺失漏洞 |
Showing top 20 of 31 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2026-48685
No comments yet