CVE-2026-37539 - Vulnerability Analysis
CriticalCVSS: 9.8Last Updated: May 1, 2026
Cannelloni - Buffer Overflow
Overview
Cannelloni v2.0.0 contains a buffer overflow caused by improper handling of crafted CAN FD frames in parseCANFrame and decodeFrame functions, letting remote attackers cause denial of service or execute arbitrary code.
Severity & Score
Impact
Remote attackers can cause crashes or execute arbitrary code, potentially leading to full system compromise.
Mitigation
Update to the latest version of Cannelloni.
References
Social Media Activity(2 posts)
š“ CVE-2026-37539 - Critical (9.8) Buffer overflow vulnerability in cannelloni v2.0.0 in CAN frame parsing in parser.cpp in function parseCANFrame, and decoder.cpp in function decodeFrame allowing remote attackers to cause a denial of service (crash) or possibly execute arbitrary c... š https://www.thehackerwire.com/vulnerability/CVE-2026-37539/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original post
š“ CVE-2026-37539 - Critical (9.8) Buffer overflow vulnerability in cannelloni v2.0.0 in CAN frame parsing in parser.cpp in function parseCANFrame, and decoder.cpp in function decodeFrame allowing remote attackers to cause a denial of service (crash) or possibly execute arbitrary c... š https://www.thehackerwire.com/vulnerability/CVE-2026-37539/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2026-37539
- Severity
- Critical
- CVSS Score
- 9.8
- Type
- buffer_overflow
- Status
- new
- EPSS
- 25.1%
- Social Posts
- 2
CWE
- CWE-121
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H