top of page
perceptive_background_267k.jpg

A security vulnerability has been detected in H3C Magic B0 up to 100R002. The affected element is the function SetMobileAPInfoById of the file /goform/aspForm. …

Published:

31 May 2026 at 22:00:00

Alert date:

1 June 2026 at 17:02:55

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

A critical stack-based buffer overflow vulnerability (CVE-2026-10259) has been discovered in H3C Magic B0 devices up to firmware version 100R002. The vulnerability exists in the SetMobileAPInfoById function within the /goform/aspForm file, where manipulation of the param argument leads to buffer overflow. This vulnerability can be exploited remotely and public exploits are already available. The vendor was notified but has not responded to disclosure attempts, making this a particularly concerning security issue for affected devices.

Technical details

Mitigation steps:

Affected products:

H3C Magic B0

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-10259
https://github.com/666324/H3C-Magic-B0-vuln
https://github.com/666324/H3C-Magic-B0-vuln/tree/main/H3C-Magic%20B0-vuln
https://vuldb.com/cve/CVE-2026-10259
https://vuldb.com/submit/824402
https://vuldb.com/vuln/367539
https://vuldb.com/vuln/367539/cti

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page