CVE-2026-2192 | Tenda AC9 15.03.06.42_multi formGetRebootTimer stack-based overflow

Inserito da Angelo Barbosa | Feb 7, 2026 | CVE

A vulnerability was found in Tenda AC9 15.03.06.42_multi and classified as critical. Affected by this vulnerability is the function formGetRebootTimer. Such manipulation of the argument sys.schedulereboot.start_time/sys.schedulereboot.end_time leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2026-2192. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-2192 | Tenda AC9 15.03.06.42_multi formGetRebootTimer stack-based overflow

Post correlati

CVE-2023-38575 | Intel CPU Return Predictor Target information disclosure (intel-sa-00982)

CVE-2024-4818 | Campcodes Online Laundry Management System 1.0 /index.php page file inclusion

CVE-2023-53570 | Linux Kernel up to 6.1.45/6.4.10 80211 Interface nl80211_parse_mbssid_elems heap-based overflow

CVE-2025-21691 | Linux Kernel up to 6.6.74/6.12.11/6.13.0 cachestat mm/mincore.c permission