Is Stack Overflow affected by CVE-2026-2017?

A critical vulnerability (CVSS 9.8) affecting IP-COM W30AP wireless access points up to version 1.0.0.11(1340) enables unauthenticated remote attackers to compromise affected devices through the /goform/wx3auth endpoint.

CVE-2026-2017

CRITICAL

2026-02-06 [email protected]

9.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

PoC Detected

Feb 17, 2026 - 19:09 vuln.today

Public exploit code

CVE Published

Feb 06, 2026 - 12:16 nvd

CRITICAL 9.8

Description

A vulnerability was detected in IP-COM W30AP up to 1.0.0.11(1340). Affected by this issue is the function R7WebsSecurityHandler of the file /goform/wx3auth of the component POST Request Handler. The manipulation of the argument data results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Analysis

IP-COM W30AP wireless access point up to firmware 1.0.0.11 has a buffer overflow that allows remote attackers to execute code or crash the device.

Remediation

Within 24 hours: Inventory all IP-COM W30AP devices in production and isolate any running vulnerable firmware versions from critical network segments; disable external access to the /goform/wx3auth endpoint via firewall rules. Within 7 days: Apply network segmentation to restrict access to affected access points to administrative networks only; implement continuous monitoring for exploitation attempts. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.2

CVSS: +49

POC: +20

CVE-2026-2017 vulnerability details – vuln.today

Back

CVE-2026-2017

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

CVE-2026-2017

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code