CVE-2026-3044 | Tenda AC8 16.03.34.06 Httpd Service /cgi-bin/UploadCfg webCgiGetUploadFile boundary stack-based overflow

Inserito da Angelo Barbosa | Feb 23, 2026 | CVE

A vulnerability has been found in Tenda AC8 16.03.34.06 and classified as critical. This affects the function webCgiGetUploadFile of the file /cgi-bin/UploadCfg of the component Httpd Service. The manipulation of the argument boundary leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2026-3044. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-3044 | Tenda AC8 16.03.34.06 Httpd Service /cgi-bin/UploadCfg webCgiGetUploadFile boundary stack-based overflow

Post correlati

CVE-2023-52634 | Linux Kernel up to 6.7.3 DRM disable_otg_wa denial of service (ce29728ef648/2ce156482a6f)

CVE-2024-13078 | PHPGurukul Land Record System 1.0 /index.php searchdata sql injection

CVE-2024-3736 | cym1102 nginxWebUI up to 3.9.9 /adminPage/main/upload unrestricted upload

CVE-2022-49703 | Linux Kernel up to 5.15.50/5.18.7 ibmvfc_interrupt_scsi null pointer dereference