CVE-2026-4975 | Tenda AC15 15.03.05.19 POST Request /goform/setcfm formSetCfm funcpara1 stack-based overflow

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability marked as critical has been reported in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow.

This vulnerability is documented as CVE-2026-4975. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-4975 | Tenda AC15 15.03.05.19 POST Request /goform/setcfm formSetCfm funcpara1 stack-based overflow

Post correlati

CVE-2024-45736 | Splunk Enterprise/Cloud Platform Search Query INGEST_EVAL resource consumption (SVD-2024-1006)

CVE-2024-8594 | Autodesk AutoCAD 2025.1 MODEL File libodxdll.dll heap-based overflow

CVE-2025-13019 | Mozilla Firefox up to 144 Workers cross-domain policy

CVE-2023-52629 | Linux Kernel up to 2.6.20/6.5.3 push-switch flush_work use after free (610dbd8ac271/246f80a0b17f)