CVE-2026-7674 | Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8 Web Management Interface start_single_service vpn_pptp_server/vpn_l2tp_server buffer overflow

A vulnerability was found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8 and classified as critical. This issue affects the function start_single_service of the component Web Management Interface. Executing a manipulation of the argument vpn_pptp_server/vpn_l2tp_server can lead to buffer overflow.

This vulnerability is handled as CVE-2026-7674. The attack can be executed remotely. There is not any exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More