{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-4749", "assignerOrgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "state": "PUBLISHED", "assignerShortName": "GovTech CSG", "dateReserved": "2026-03-24T05:35:07.565Z", "datePublished": "2026-03-24T05:35:36.711Z", "dateUpdated": "2026-03-24T14:31:56.424Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "shortName": "GovTech CSG", "dateUpdated": "2026-03-24T05:35:36.711Z"}, "title": "NVD-CWE-noinfo in albfan miraclecast", "problemTypes": [{"descriptions": [{"lang": "en", "description": "NVD-CWE-noinfo NVD-CWE-noinfo", "type": "CWE"}]}], "affected": [{"vendor": "albfan", "product": "miraclecast", "collectionURL": "https://github.com/albfan/miraclecast", "versions": [{"status": "affected", "version": "0", "lessThan": "v1.0", "versionType": "git"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "NVD-CWE-noinfo vulnerability in albfan miraclecast.This issue affects miraclecast: before v1.0.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "NVD-CWE-noinfo vulnerability in albfan miraclecast.<p>This issue affects miraclecast: before v1.0.</p>"}]}], "references": [{"url": "https://github.com/albfan/miraclecast/pull/555", "tags": ["patch"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 6.5, "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}}], "credits": [{"lang": "en", "value": "TITAN Team (titancaproject@gmail.com)", "type": "reporter"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-24T14:31:49.134429Z", "id": "CVE-2026-4749", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-24T14:31:56.424Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-4749", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-24T14:31:49.134429Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-24T14:31:53.105Z"}}], "cna": {"title": "NVD-CWE-noinfo in albfan miraclecast", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "reporter", "value": "TITAN Team (titancaproject@gmail.com)"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "albfan", "product": "miraclecast", "versions": [{"status": "affected", "version": "0", "lessThan": "v1.0", "versionType": "git"}], "collectionURL": "https://github.com/albfan/miraclecast", "defaultStatus": "affected"}], "references": [{"url": "https://github.com/albfan/miraclecast/pull/555", "tags": ["patch"]}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "NVD-CWE-noinfo vulnerability in albfan miraclecast.This issue affects miraclecast: before v1.0.", "supportingMedia": [{"type": "text/html", "value": "NVD-CWE-noinfo vulnerability in albfan miraclecast.<p>This issue affects miraclecast: before v1.0.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "NVD-CWE-noinfo NVD-CWE-noinfo"}]}], "providerMetadata": {"orgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "shortName": "GovTech CSG", "dateUpdated": "2026-03-24T05:35:36.711Z"}}}, "cveMetadata": {"cveId": "CVE-2026-4749", "state": "PUBLISHED", "dateUpdated": "2026-03-24T14:31:56.424Z", "dateReserved": "2026-03-24T05:35:07.565Z", "assignerOrgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "datePublished": "2026-03-24T05:35:36.711Z", "assignerShortName": "GovTech CSG"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "NVD-CWE-noinfo vulnerability in albfan miraclecast.This issue affects miraclecast: before v1.0."}], "id": "CVE-2026-4749", "lastModified": "2026-03-24T15:53:48.067", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "cve_disclosure@tech.gov.sg", "type": "Secondary"}]}, "published": "2026-03-24T06:16:23.120", "references": [{"source": "cve_disclosure@tech.gov.sg", "url": "https://github.com/albfan/miraclecast/pull/555"}], "sourceIdentifier": "cve_disclosure@tech.gov.sg", "vulnStatus": "Awaiting Analysis"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,v1.0)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "miraclecast", "source": "cna", "vendor": "albfan"}, "product": "miraclecast", "vendor": "albfan"}], "analysis": {"en": {"generated_at": "2026-03-24T06:50:43.683285+00:00", "value": {"mitigation_remediation": ["Verify the version of Miraclecast installed on all systems.", "Upgrade to version 1.0 or later to eliminate the confirmed flaw.", "If an upgrade is not immediately feasible, monitor for vendor advisories and install any interim patches once available."], "summary": {"action": "Apply Update", "impact": "Potential Application Compromise"}, "threat_synthesis": {"affected_systems": "The issue affects the albfan Miraclecast application. Any deployment using a version earlier than 1.0 is potentially vulnerable. Administrators should check the specific version installed on their systems and determine whether it falls within the affected range.", "description_and_impact": "An unspecified vulnerability exists in albfan Miraclecast releases prior to version 1.0. The CVSS score of 6.5 indicates a moderate severity that could allow an attacker to compromise the integrity or confidentiality of the application, potentially enabling more severe exploitation. The weakness appears to be a logic or input handling flaw, though the exact nature is not detailed in the available information.", "risk_and_exploitability": "With a CVSS base score of 6.5 and no EPSS data, the risk is considered moderate but the likelihood of active exploitation is currently unknown. The vulnerability is not listed in the CISA KEV catalog, indicating no known widespread exploitation. Based on typical vulnerabilities scored at this level, the likely attack vector would involve remote or local input that is improperly validated or processed, but the precise exploit path is not documented. Organizations should assume that an attacker who can influence the application could potentially exploit the flaw, leading to unauthorized actions."}}}}, "created": "2026-03-24T10:29:00.123374+00:00", "title": "Vulnerability in albfan Miraclecast Prior to v1.0", "updated": "2026-03-25T20:40:04.899378+00:00", "vendors": ["albfan", "albfan$PRODUCT$miraclecast"], "weaknesses": ["CWE-20"]}