ГлавнаяУязвимости → CVE-2026-2870
8.8высокая

CVE-2026-2870

Описание

A security flaw has been discovered in Tenda A21 1.0.0.0. Affected by this issue is the function set_qosMib_list of the file /goform/formSetQosBand. The manipulation of the argument list results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

Затрагиваемое ПО
Tenda A21 firmwareTenda A21
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/QIU-DIE/cve-nneeww/issues/1https://vuldb.com/?ctiid.347107https://vuldb.com/?id.347107https://vuldb.com/?submit.754627https://www.tenda.com.cn/