What is CVE-2026-12192?

CVE-2026-12192 is a high-severity vulnerability, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.8/10. Published 2026-06-15.

How severe is CVE-2026-12192?

High severity. CVSS v3 base score is 8.8 out of 10.

CVE-2026-12192

CVE-2026-12192

A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local network. The exploit has been publicly…

Vulnerability class: Buffer Overflow

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-120 — Buffer Copy without Checking Size of Input (Classic Buffer Overflow)

References

cna@vuldb.com
cna@vuldb.com
cna@vuldb.com
cna@vuldb.com

Frequently asked questions

What is CVE-2026-12192?: CVE-2026-12192 is a high-severity vulnerability, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.8/10. Published 2026-06-15.
How severe is CVE-2026-12192?: High severity. CVSS v3 base score is 8.8 out of 10.