EUVD-2026-13736

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

EUVD-2025-208907

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

CVE-2026-4493 Tenda A18 Pro MAC Filtering Configuration Endpoint setMacFilterCfg sub_423B50 stack-based overflow

A vulnerability was determined in Tenda A18 Pro 02.03.02.28. The impacted element is the function sub423B50 of the file /goform/setMacFilterCfg of the component MAC Filtering Configuration Endpoint. Executing a manipulation of the argument deviceList can lead to stack-based buffer overflow. The...

CVE-2026-4493

A vulnerability was determined in Tenda A18 Pro 02.03.02.28. The impacted element is the function sub423B50 of the file /goform/setMacFilterCfg of the component MAC Filtering Configuration Endpoint. Executing a manipulation of the argument deviceList can lead to stack-based buffer overflow. The...

CVE-2026-4493

CVE-2026-4493 : A stack-based buffer overflow vulnerability exists in Tenda A18 Pro firmware version 02.03.02.28, specifically in the MAC Filtering Configuration Endpoint’s file /goform/setMacFilterCfg, within the function sub_423B50. By manipulating the argument deviceList, an attacker can cause...

CVE-2026-4493 Tenda A18 Pro MAC Filtering Configuration Endpoint setMacFilterCfg sub_423B50 stack-based overflow

A vulnerability was determined in Tenda A18 Pro 02.03.02.28. The impacted element is the function sub423B50 of the file /goform/setMacFilterCfg of the component MAC Filtering Configuration Endpoint. Executing a manipulation of the argument deviceList can lead to stack-based buffer overflow. The...

CVE-2026-4490

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

CVE-2026-4491

A vulnerability has been found in Tenda A18 Pro 02.03.02.28. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public a...

CVE-2025-15608

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

CVE-2026-4492 Tenda A18 Pro formSetQosBand set_qosMib_list stack-based overflow

A vulnerability was found in Tenda A18 Pro 02.03.02.28. The affected element is the function setqosMiblist of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has...

CVE-2026-4492 Tenda A18 Pro formSetQosBand set_qosMib_list stack-based overflow

A vulnerability was found in Tenda A18 Pro 02.03.02.28. The affected element is the function setqosMiblist of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has...

CVE-2026-4492

Technical details about CVE-2026-4492 are not publicly provided in the supplied documents. Monitor for updates; the materials summarize the vulnerability but do not disclose proofs, affected versions beyond the one cited, or fixes.

Security Bulletin: IBM watsonx.data integration has several vulnerabilities due to open source packages (CVE-2026-24486,CVE-2025-50537,CVE-2026-24688)

Summary Open source packages are used as part of the overall processing in IBM watsonx.data integration. Vulnerability Details CVEID:CVE-2026-24486 DESCRIPTION: Python-Multipart is a streaming multipart parser for Python. Prior to version 0.0.22, a Path Traversal vulnerability exists when using...

CVE-2026-4491

A vulnerability has been found in Tenda A18 Pro 02.03.02.28. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public a...

CVE-2026-4491

CVE-2026-4491 affects Tenda A18 Pro firmware 02.03.02.28. The vulnerability is in the fromSetIpMacBind function in /goform/SetIpMacBind, where manipulation of the argument list causes a stack-based buffer overflow. This enables remote code execution with high impact on confidentiality, integrity,...

CVE-2026-4490 Tenda A18 Pro openSchedWifi setSchedWifi stack-based overflow

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

CVE-2026-4490

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

CVE-2026-4490 Tenda A18 Pro openSchedWifi setSchedWifi stack-based overflow

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

CVE-2026-4490

The CVE-2026-4490 entry describes a stack-based buffer overflow in Tenda A18 Pro firmware 02.03.02.28, caused by the function setSchedWifi in the file /goform/openSchedWifi. This vulnerability enables remote exploitation and an exploit has been published. No remediation or patch details are provi...

CVE-2025-15608

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...