Which versions of Magic B0 are affected by CVE-2026-6560?

H3C Magic B0 routers running firmware 100R002 and earlier are vulnerable to authenticated remote code execution through a buffer overflow in the SSID configuration function, enabling attackers with…

Is there a public PoC exploit available for CVE-2026-6560?

Yes, a public proof-of-concept exploit is available for CVE-2026-6560. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-6560?

24 hours: Inventory all H3C Magic B0 routers in production and document firmware versions; restrict administrative access to these devices to hardened jump hosts only. 7 days: Contact H3C for security guidance and timeline estimates; implement network segmentation to isolate affected routers from sensitive systems. 30 days: Evaluate replacement with patched alternatives; if devices must remain in service, implement compensating controls per vendor guidance and continuous monitoring for unauthorized access.

Magic B0 CVE-2026-6560

Q: What is the CVSS score of CVE-2026-6560?

CVE-2026-6560 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-23684 HIGH

Classic Buffer Overflow (CWE-120)

2026-04-19 VulDB

GHSA-m9r6-cg89-ghg2

Buffer Overflow Magic B0

7.4

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.4 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Apr 22, 2026 - 20:22 vuln.today

Public exploit code

Analysis Updated

Apr 19, 2026 - 07:27 vuln.today

v2 (cvss_changed)

Re-analysis Queued

Apr 19, 2026 - 07:22 vuln.today

cvss_changed

CVSS changed

Apr 19, 2026 - 07:22 NVD

8.8 (HIGH) 7.4 (HIGH)

Analysis Generated

Apr 19, 2026 - 07:04 vuln.today

EUVD ID Assigned

Apr 19, 2026 - 07:00 euvd

EUVD-2026-23684

Analysis Generated

Apr 19, 2026 - 07:00 vuln.today

CVE Published

Apr 19, 2026 - 06:45 nvd

HIGH 7.4

DescriptionCVE.org

A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Buffer overflow in H3C Magic B0 routers (firmware versions up to 100R002) allows authenticated remote attackers to achieve arbitrary code execution via the Edit_BasicSSID function in /goform/aspForm. Public exploit code exists on GitHub. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon

Obtain router credentials

Delivery

Authenticate to web interface

Exploit

Send crafted POST to /goform/aspForm

Install

Trigger buffer overflow in Edit_BasicSSID

Overwrite stack return address

Execute

Execute injected shellcode

Impact

Install persistent backdoor