ГлавнаяУязвимости → CVE-2026-5605
8.8высокая

CVE-2026-5605

Описание

A weakness has been identified in Tenda CH22 1.0.0.1. This affects the function formWrlExtraSet of the file /goform/WrlExtraSet. Executing a manipulation of the argument GO can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Litengzheng/vuldb_new/blob/main/CH22/vul_54/README.mdhttps://vuldb.com/submit/785052https://vuldb.com/vuln/355397https://vuldb.com/vuln/355397/ctihttps://www.tenda.com.cn/