CVE-2026-10068: Server-Side Request Forgery in Shibby Tomato
CVE-2026-10068 is a server-side request forgery (SSRF) vulnerability found in Shibby Tomato version 1. 28, specifically in the send function of usr/sbin/miniupnpd within the SUBSCRIBE Call Handler component. This vulnerability can be exploited remotely without authentication. The affected product is no longer supported, having been superseded by FreshTomato. The CVSS 4. 0 base score is 6. 9, indicating a medium severity level. No official patch or remediation is currently available from the vendor. There are no known exploits in the wild at this time.
AI Analysis
Technical Summary
This vulnerability involves a server-side request forgery flaw in Shibby Tomato 1.28's miniupnpd service, allowing remote attackers to manipulate the send function in the SUBSCRIBE Call Handler. The flaw enables attackers to induce the server to make unintended requests, potentially leading to information disclosure or other impacts associated with SSRF. The product is no longer maintained, and no vendor-provided fix or mitigation guidance is available.
Potential Impact
The vulnerability allows remote attackers to perform SSRF attacks against Shibby Tomato 1.28 devices, potentially enabling them to make unauthorized requests from the affected device. The impact is rated medium severity with a CVSS 4.0 score of 6.9. Since the product is no longer supported, affected devices remain vulnerable unless users upgrade to a supported alternative such as FreshTomato. There are no reports of active exploitation in the wild.
Mitigation Recommendations
No official patch or remediation is available for this vulnerability as the affected product is no longer supported. Users are advised to upgrade to a supported fork or alternative firmware such as FreshTomato, which supersedes Shibby Tomato. Until migration, network-level controls to restrict access to the affected service may reduce exposure, but no vendor guidance is provided.
CVE-2026-10068: Server-Side Request Forgery in Shibby Tomato
Description
CVE-2026-10068 is a server-side request forgery (SSRF) vulnerability found in Shibby Tomato version 1. 28, specifically in the send function of usr/sbin/miniupnpd within the SUBSCRIBE Call Handler component. This vulnerability can be exploited remotely without authentication. The affected product is no longer supported, having been superseded by FreshTomato. The CVSS 4. 0 base score is 6. 9, indicating a medium severity level. No official patch or remediation is currently available from the vendor. There are no known exploits in the wild at this time.
CVSS v4.0
Score 6.9medium
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a server-side request forgery flaw in Shibby Tomato 1.28's miniupnpd service, allowing remote attackers to manipulate the send function in the SUBSCRIBE Call Handler. The flaw enables attackers to induce the server to make unintended requests, potentially leading to information disclosure or other impacts associated with SSRF. The product is no longer maintained, and no vendor-provided fix or mitigation guidance is available.
Potential Impact
The vulnerability allows remote attackers to perform SSRF attacks against Shibby Tomato 1.28 devices, potentially enabling them to make unauthorized requests from the affected device. The impact is rated medium severity with a CVSS 4.0 score of 6.9. Since the product is no longer supported, affected devices remain vulnerable unless users upgrade to a supported alternative such as FreshTomato. There are no reports of active exploitation in the wild.
Mitigation Recommendations
No official patch or remediation is available for this vulnerability as the affected product is no longer supported. Users are advised to upgrade to a supported fork or alternative firmware such as FreshTomato, which supersedes Shibby Tomato. Until migration, network-level controls to restrict access to the affected service may reduce exposure, but no vendor guidance is provided.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-05-29T08:32:34.889Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a19bc63e29bf47b50f702cc
Added to database: 5/29/2026, 4:18:43 PM
Last enriched: 5/29/2026, 4:34:57 PM
Last updated: 5/29/2026, 5:28:26 PM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.