Description
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by 4 bytes of controlled data to crash the application or potentially achieve code execution.
Published: 2026-04-22
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: Local buffer overflow leading to potential code execution
Action: Immediate Patch
AI Analysis

Impact

LanSpy 2.0.1.159 contains a local buffer overflow that occurs when oversized input is supplied to the scan field. A crafted payload of 688 bytes of padding followed by four bytes of attacker‑controlled data can overwrite the instruction pointer, causing the application to crash or, if an exploit is completed, to execute arbitrary code.

Affected Systems

The vulnerability affects the Lizardsystems LanSpy product, specifically version 2.0.1.159. No other versions or products are listed as impacted.

Risk and Exploitability

The CVSS score of 8.6 indicates high severity, and the EPSS score is not available. The vulnerability is not listed in CISA KEV. The likely attack vector is local, inferred from the requirement for a user to supply input to the scan field. Once executed, the attacker can gain arbitrary code execution on the affected system.

Generated by OpenCVE AI on April 27, 2026 at 08:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade LanSpy to a patched version that removes the buffer overflow flaw.
  • If no update is immediately available, run LanSpy with the lowest privilege level possible and restrict access to the binary so that only trusted users can launch it.
  • As a temporary workaround, limit or disable the scan field functionality by editing the application configuration or removing the feature from the user interface, thereby eliminating the overflow condition.

Generated by OpenCVE AI on April 27, 2026 at 08:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 27 Apr 2026 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Lizardsystems
Lizardsystems lanspy
CPEs cpe:2.3:a:lizardsystems:lanspy:2.0.1.159:*:*:*:*:*:*:*
Vendors & Products Lizardsystems
Lizardsystems lanspy

Wed, 22 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 22 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
Description LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by 4 bytes of controlled data to crash the application or potentially achieve code execution.
Title LanSpy 2.0.1.159 Local Buffer Overflow via Scan Field
Weaknesses CWE-787
References
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Lizardsystems Lanspy
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-22T15:41:19.726Z

Reserved: 2026-04-22T14:28:01.361Z

Link: CVE-2018-25268

cve-icon Vulnrichment

Updated: 2026-04-22T15:41:08.925Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-22T16:16:47.397

Modified: 2026-04-27T17:25:43.533

Link: CVE-2018-25268

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-27T20:21:01Z

Weaknesses