CVE-2026-8232

low

Published 2026-05-10 · Modified 2026-05-13

CVSS v3

3.5

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CVSS v2

2.7

VIR risk

3.5

Description

A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.so of the component UPF Process. The manipulation results in denial of service. The vendor was contacted early about this disclosure.

Predictions

Exploit likelihood

35%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

https://vuldb.com/submit/808794
https://vuldb.com/vuln/362449
https://vuldb.com/vuln/362449/cti
https://vuldb.com/submit/808794

CWEs

CWE-404

Verify integrity in audit chain (admin only). AS-IS.