Description
NVD-CWE-noinfo vulnerability in albfan miraclecast.This issue affects miraclecast: before v1.0.
Published: 2026-03-24
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unspecified Vulnerability
Action: Assess Impact
AI Analysis

Impact

The vulnerability in albfan miraclecast is described only as an unspecified security issue affecting versions before 1.0. The CVSS score of 6.5 indicates a medium severity risk, suggesting that an attacker could potentially compromise confidentiality, integrity, or availability, though the exact impact is not detailed. The lack of explicit attack details makes it unclear whether the flaw could lead to remote code execution, privilege escalation, or data disclosure.

Affected Systems

All installations of albfan miraclecast running a version older than 1.0 are affected. The product is identified simply as miraclecast, and no additional vendor or product distinctions are provided.

Risk and Exploitability

With an EPSS score of less than 1% and no listing in the CISA Known Exploited Vulnerabilities catalog, the likelihood of an immediate real‑world exploitation is low. However, the medium CVSS rating suggests that once detected, an attacker could use the flaw to potentially undermine system security. The specific attack vector is not disclosed, so it is inferred that the vulnerability may impact either internal or external users, but concrete details are missing.

Generated by OpenCVE AI on March 27, 2026 at 21:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade albfan miraclecast to version 1.0 or newer
  • If upgrading is not immediately possible, monitor for future patches and restrict access to the affected system
  • Review the linked pull request on GitHub for mitigation hints and potential workarounds

Generated by OpenCVE AI on March 27, 2026 at 21:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 29 Mar 2026 20:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Fri, 27 Mar 2026 20:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-79
CWE-798
CWE-89

Fri, 27 Mar 2026 09:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-79
CWE-798
CWE-89

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Tue, 24 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 24 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Albfan
Albfan miraclecast
Vendors & Products Albfan
Albfan miraclecast

Tue, 24 Mar 2026 05:45:00 +0000

Type Values Removed Values Added
Description NVD-CWE-noinfo vulnerability in albfan miraclecast.This issue affects miraclecast: before v1.0.
Title NVD-CWE-noinfo in albfan miraclecast
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Albfan Miraclecast
cve-icon MITRE

Status: PUBLISHED

Assigner: GovTech CSG

Published:

Updated: 2026-03-24T14:31:56.424Z

Reserved: 2026-03-24T05:35:07.565Z

Link: CVE-2026-4749

cve-icon Vulnrichment

Updated: 2026-03-24T14:31:53.105Z

cve-icon NVD

Status : Deferred

Published: 2026-03-24T06:16:23.120

Modified: 2026-05-05T20:38:41.080

Link: CVE-2026-4749

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-29T20:28:49Z

Weaknesses