PT-2026-35376

Name of the Vulnerable Software and Affected Versions Tenda F456 version 1.0.0.5 Description A buffer overflow can be triggered remotely within the httpd component. The issue exists in the formQuickIndex function located in the /goform/QuickIndex file, where manipulating the mit linktype argument...

CVE-2026-6015

A vulnerability has been found in Tenda AC9 15.03.02.13. Impacted is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. Such manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely...

CVE-2026-6015

A vulnerability has been found in Tenda AC9 15.03.02.13. Impacted is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. Such manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely...

CVE-2026-5156

The CVE-2026-5156 issue affects Tenda CH22 1.0.0.1, specifically the Parameter Handler’s formQuickIndex function in /goform/QuickIndex. The vulnerability stems from manipulating the mit_linktype argument, causing a stack-based buffer overflow. It is remotely exploitable and has publicly disclosed...

CVE-2026-5156 Tenda CH22 Parameter QuickIndex formQuickIndex stack-based overflow

A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/QuickIndex of the component Parameter Handler. This manipulation of the argument mitlinktype causes stack-based buffer overflow. The attack is possible to be carried out remotely. Th...

CVE-2026-4903

A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. Th...

CVE-2026-4961 Tenda AC6 POST Request QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

CVE-2026-4903 Tenda AC5 POST Request QuickIndex formQuickIndex memory corruption

A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. Th...

CVE-2026-4903 Tenda AC5 POST Request QuickIndex formQuickIndex memory corruption

A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. Th...

CVE-2025-9298 Tenda M3 QuickIndex formQuickIndex stack-based overflow

A flaw has been found in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPOEPassword can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used...

PT-2024-23153 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda FH1203 version 2.0.1.6 Description: A critical issue was found in the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to a stack-based buffer overflow. It is possible to launc...

Tenda F1203 安全漏洞

The Tenda F1203 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda F1203 version 2.0.1.6, which originates from the PPPOEPassword parameter of the formQuickIndex method of the /goform/QuickIndex file that fails to correctly validate the length of t...

Tenda AC7 安全漏洞

Tenda AC7 is a 1200M dual-band wireless router from Tenda, designed for broadband upgrades and large households. The Tenda AC7 suffers from a buffer overflow vulnerability that originates from a buffer overflow vulnerability in the PPPOEPassword parameter of the formQuickIndex method. No detailed...