CVE-2026-8138 | Tenda CX12L 16.03.53.12 SetPptpServerCfg” formSetPPTPServer stack-based overflow

Inserito da Angelo Barbosa | Mag 7, 2026 | CVE

A vulnerability described as critical has been identified in Tenda CX12L 16.03.53.12. This issue affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg”. The manipulation results in stack-based buffer overflow.

This vulnerability is identified as CVE-2026-8138. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-8138 | Tenda CX12L 16.03.53.12 SetPptpServerCfg” formSetPPTPServer stack-based overflow

Post correlati

CVE-2026-5272 | Google Chrome up to 146.0.7680.165 GPU heap-based overflow (ID 491732)

CVE-2024-54462 | Flutter Image Picker up to 0.8.12+17 on Android File path traversal

CVE-2025-71276 | Alinto SOGo up to 5.12.4 cross site scripting

CVE-2023-42914 | Apple iOS/iPadOS sandbox