CVE-2026-4903 | Tenda AC5 15.03.06.47 POST Request /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability classified as critical has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow.

This vulnerability appears as CVE-2026-4903. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-4903 | Tenda AC5 15.03.06.47 POST Request /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Post correlati

CVE-2024-11511 | IrfanView XCF File Parser heap-based overflow (ZDI-24-1556)

CVE-2026-24928 | Huawei HarmonyOS/EMUI File System integer overflow to buffer overflow

CVE-2024-6112 | itsourcecode Pool of Bethesda Online Reservation System 1.0 index.php log_email sql injection

CVE-2024-36137 | Node.js File Descriptor allow-fs-write permission