# CVE

**Repository Path**: Fengyi-Wang/CVE

## Basic Information

- **Project Name**: CVE
- **Description**: Backup repository for firmware CVE submission issues and package archives
- **Primary Language**: Unknown
- **License**: Not specified
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 0
- **Forks**: 0
- **Created**: 2026-04-11
- **Last Updated**: 2026-05-02

## Categories & Tags

**Categories**: Uncategorized

**Tags**: None

## README

# CVE Public References

This repository hosts public backup references for firmware vulnerability submissions.

## Submitter

- Fengyi Wang
- Huazhong University of Science and Technology

## Issues and Attachments

1. [Tomato by Shibby Tomato Firmware 1.28 Stack-based Buffer Overflow (www/apcupsd/tomatodata.cgi)](https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BC)
   - Attachment: [01-tomato-tomatodata-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/01-tomato-tomatodata-cve-attachment.zip)
2. [Tomato by Shibby Tomato Firmware 1.28 Stack-based Buffer Overflow (www/apcupsd/tomatoups.cgi)](https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BD)
   - Attachment: [02-tomato-tomatoups-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/02-tomato-tomatoups-cve-attachment.zip)
3. [Tomato by Shibby Tomato Firmware 1.28 Stack-based Buffer Overflow (www/apcupsd/multimon.cgi)](https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BE)
   - Attachment: [03-tomato-multimon-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/03-tomato-multimon-cve-attachment.zip)
4. [MikroTik RouterOS 6.49.8 Out-of-Bounds Read (nova/lib/www/scep.p)](https://gitee.com/Fengyi-Wang/CVE/issues/IJ9FFF)
   - Attachment: [04-mikrotik-scep-p-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/04-mikrotik-scep-p-cve-attachment.zip)
5. [Tomato by Shibby Tomato v1.28.0005 124 ND USB Stack-based Buffer Overflow (usr/sbin/ripd)](https://gitee.com/Fengyi-Wang/CVE/issues/IJ9FFG)
   - Attachment: [05-tomato-ripd-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/05-tomato-ripd-cve-attachment.zip)
6. [MikroTik RouterOS 6.49.7/6.49.8 Pre-Authentication Out-of-Bounds Read (nova/lib/www/scep.p)](https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SM)
   - Attachment: [06-mikrotik-scep-p-preauth-oob-read-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/06-mikrotik-scep-p-preauth-oob-read-cve-attachment.zip)
7. [Tomato by Shibby Tomato Firmware 1.28 Uncontrolled Resource Consumption in HTTP Request Buffering (usr/sbin/miniupnpd)](https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SP)
   - Attachment: [07-tomato-miniupnpd-http-heap-growth-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/07-tomato-miniupnpd-http-heap-growth-cve-attachment.zip)
8. [Tomato by Shibby Tomato Firmware 1.28 Information Disclosure in SUBSCRIBE Callback Handling (usr/sbin/miniupnpd)](https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SS)
   - Attachment: [08-tomato-miniupnpd-subscribe-infoleak-cve-attachment.zip](https://gitee.com/Fengyi-Wang/CVE/raw/master/attachments/08-tomato-miniupnpd-subscribe-infoleak-cve-attachment.zip)

## Notes

- Attachment packages contain the English submission document and supporting technical evidence only.
- Non-CVE drafts, local runtime paths, raw internal logs, and local workflow artifacts are intentionally excluded from public attachment packages.
- Newer packages use a normalized layout: the main document at the package root, supporting material in `supporting/`, and helper scripts in `repo/`.