CVE-2026-5154 | Tenda CH22 1.0.0.1/1.If Parameter /goform/setcfm fromSetCfm funcname stack-based overflow

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability classified as critical has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow.

This vulnerability is referenced as CVE-2026-5154. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-5154 | Tenda CH22 1.0.0.1/1.If Parameter /goform/setcfm fromSetCfm funcname stack-based overflow

Post correlati

CVE-2024-56571 | Linux Kernel up to 5.10.230/5.15.173/6.1.119/6.6.63/6.12.3 uvcvideo mc-entity.c initialization

CVE-2024-54306 | KCT AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot Plugin cross-site request forgery

CVE-2024-29967 | Brocade SANnav 2.3.0 Docker default permission

CVE-2022-50310 | Linux Kernel up to 6.0.5 ip6mr_sk_done initialization