ГлавнаяУязвимости → CVE-2026-2191
7.2высокая

CVE-2026-2191

Описание

A weakness has been identified in Tenda AC9 15.03.06.42_multi. Affected is the function formGetDdosDefenceList. This manipulation of the argument security.ddos.map causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.

Затрагиваемое ПО
Tenda Ac9 firmwareTenda Ac9
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/glkfc/IoT-Vulnerability/blob/main/Tenda/tenda3.mdhttps://vuldb.com/?ctiid.344894https://vuldb.com/?id.344894https://vuldb.com/?submit.749800https://www.tenda.com.cn/