Primary

Context

Striso Control Firmware Buffer Overflow Vulnerability in AuxJack Function

Vulnerability

A buffer overflow vulnerability has been identified in the Striso Control Firmware version 54c9722, specifically within the AuxJack function. This vulnerability arises from a potential thread stack overflow, where the AuxJack thread function can handle only 128 bytes, yet may require up to 200 bytes, leading to a stack overflow condition.

Impact

Exploitation of this vulnerability could lead to a stack overflow, potentially allowing for arbitrary code execution or causing a denial-of-service condition by crashing the device.

Reproduction

To reproduce this vulnerability, build the Striso Control Firmware normally, then modify the Makefile to include optimization flags that enable stack usage analysis. After rebuilding the firmware with these flags, the stack usage file can be checked to confirm that the AuxJack function exceeds the safe stack limit, demonstrating the potential for a stack overflow.

Added: May 13, 2026, 6:49 PM

Updated: May 13, 2026, 6:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

8.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

8.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Striso Control Firmware Buffer Overflow Vulnerability in AuxJack Function

Vulnerability

Impact

Reproduction

Affected Products

striso-control-firmware

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating