CVE-2026-2191 | Tenda AC9 15.03.06.42_multi formGetDdosDefenceList security.ddos.map stack-based overflow

Inserito da Angelo Barbosa | Feb 7, 2026 | CVE

A vulnerability has been found in Tenda AC9 15.03.06.42_multi and classified as critical. Affected is the function formGetDdosDefenceList. This manipulation of the argument security.ddos.map causes stack-based buffer overflow.

This vulnerability appears as CVE-2026-2191. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-2191 | Tenda AC9 15.03.06.42_multi formGetDdosDefenceList security.ddos.map stack-based overflow

Post correlati

CVE-2025-0820 | clicface Clicface Trombi Plugin up to 2.08 on WordPress nom cross site scripting

CVE-2024-10729 | Booking & Appointment Plugin for WooCommerce up to 6.9.0 on WordPress Option Update access control

CVE-2025-5257 | Mautic up to 6.0.1/5.4.5/4.4.15 /page/preview/1 improper validation of specified quantity in input (GHSA-cqx4-9vqf-q3m8)

CVE-2025-21617 | guzzle oauth-subscriber up to 0.8.0 Nonce weak prng