12 matches found
CVE-2026-7096
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2026-7096
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2026-7096
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...
EUVD-2026-25786
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2026-7096
The CVE-2026-7096 entry concerns Tenda HG3 (2.0 300003070) where the vulnerable component is formgponConf under /boaform/admin/formgponConf. The root cause is manipulation of the fmgpon_loid parameter leading to an OS command injection, with a network-exposed (remote) attack surface and a high im...
CVE-2026-7096 Tenda HG3 formgponConf os command injection
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...
PT-2026-35365
A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgpon loid results in os command injection. It is possible to launch the attack remotely. The exploit has...
Tenda HG3 命令注入漏洞
The Tenda HG3 is a fiber-optic network terminal wireless router device designed for home broadband access by the Chinese company Tenda. Version 2.0 300003070 of the Tenda HG3 has a command injection vulnerability. This vulnerability stems from improper handling of the parameter fmgponloid in the...
CVE-2026-2907 Tenda HG9 GPON Configuration Endpoint formgponConf stack-based overflow
A weakness has been identified in Tenda HG9 300001138. Affected by this vulnerability is an unknown functionality of the file /boaform/formgponConf of the component GPON Configuration Endpoint. This manipulation of the argument fmgponloid/fmgponloidpassword causes stack-based buffer overflow...
CVE-2026-2907
A weakness has been identified in Tenda HG9 300001138. Affected by this vulnerability is an unknown functionality of the file /boaform/formgponConf of the component GPON Configuration Endpoint. This manipulation of the argument fmgponloid/fmgponloidpassword causes stack-based buffer overflow...
CVE-2026-2907
The CVE targets Tenda HG9 (model 300001138) with a vulnerability in the GPON Configuration Endpoint. It exploits an issue in the /boaform/formgponConf handler where manipulating the arguments fmgpon_loid/fmgpon_loid_password triggers a stack-based buffer overflow. This allows remote, unauthentica...
PT-2026-21408
Name of the Vulnerable Software and Affected Versions Tenda HG9 300001138 affected versions not specified Description A flaw exists in Tenda HG9 300001138 within the GPON Configuration Endpoint. The issue relates to the manipulation of the fmgpon loid/fmgpon loid password argument in the...