CVE-2026-10067

Name of the Vulnerable Software and Affected Versions Shibby Tomato version 1.28

Description A stack-based buffer overflow occurs in the sub 90F0() function within the 'multimon.cgi' file. This issue allows a remote attacker to manipulate the system via a buffer overflow, which happens when a program writes more data to a fixed-length block of memory (the stack) than it is allocated to hold.

Recommendations As a temporary workaround, restrict access to the 'multimon.cgi' file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.