ГлавнаяУязвимости → CVE-2026-2906
8.8высокая

CVE-2026-2906

Описание

A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.

Затрагиваемое ПО
Tenda Hg9 firmwareTenda Hg9
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/QIU-DIE/cve-nneeww/issues/8https://vuldb.com/?ctiid.347215https://vuldb.com/?id.347215https://vuldb.com/?submit.755193https://www.tenda.com.cn/