CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/02/23 7:26 a.m.•4 views

CVE-2026-2908

A security vulnerability has been detected in Tenda HG9 300001138. Affected by this issue is some unknown functionality of the file /boaform/formLoopBack of the component Loopback Detection Configuration Endpoint. Such manipulation of the argument Ethtype leads to stack-based buffer overflow. The...

9CVSS6.2AI score0.00112EPSS

RedhatCVE•added 2026/02/23 7:26 a.m.•6 views

CVE-2026-2909

A vulnerability was detected in Tenda HG9 300001138. This affects an unknown part of the file /boaform/formPing of the component Diagnostic Ping Endpoint. Performing a manipulation of the argument pingAddr results in stack-based buffer overflow. The attack is possible to be carried out remotely...

9CVSS6.2AI score0.00112EPSS

RedhatCVE•added 2026/02/23 1:20 a.m.•4 views

CVE-2026-2905

A vulnerability was identified in Tenda HG9 300001138. This impacts an unknown function of the file /boaform/formWlanSetup of the component Wireless Configuration Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack may be initiated remotely. The exploi...

9CVSS8.8AI score0.00112EPSS

OSV•added 2026/02/22 4:15 a.m.•1 views

CVE-2026-2910

A flaw has been found in Tenda HG9 300001138. This vulnerability affects unknown code of the file /boaform/formPing6. Executing a manipulation of the argument pingAddr can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.8CVSS6.4AI score

NVD•added 2026/02/22 4:15 a.m.•4 views

CVE-2026-2910

9CVSS0.00154EPSS

Cvelist•added 2026/02/22 2:32 a.m.•23 views

CVE-2026-2910 Tenda HG9 formPing6 stack-based overflow

9CVSS0.00154EPSS

ATTACKERKB•added 2026/02/22 2:32 a.m.•5 views

CVE-2026-2910

9CVSS6.3AI score0.00154EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/22 2:32 a.m.•3 views

CVE-2026-2910 Tenda HG9 formPing6 stack-based overflow

9CVSS8.7AI score0.00154EPSS

CVE•added 2026/02/22 2:32 a.m.•7 views

CVE-2026-2910

CVE-2026-2910 affects the Tenda HG9 line, specifically versions prior to 300001139. The vulnerability resides in the file /boaform/formPing6, where manipulating the pingAddr argument triggers a stack-based overflow. It can be exploited remotely, and an exploit has been published. Remediation: upg...

9CVSS8.6AI score0.00154EPSS

Exploits1References5Affected Software1

OSV•added 2026/02/22 2:16 a.m.•2 views

CVE-2026-2909

8.8CVSS6.4AI score

NVD•added 2026/02/22 2:16 a.m.•5 views

CVE-2026-2909

9CVSS0.00112EPSS

NVD•added 2026/02/22 2:16 a.m.•4 views

CVE-2026-2906

9CVSS0.00112EPSS

OSV•added 2026/02/22 2:16 a.m.•2 views

CVE-2026-2908

8.8CVSS6.5AI score

OSV•added 2026/02/22 2:16 a.m.•3 views

CVE-2026-2906

8.8CVSS6.5AI score

OSV•added 2026/02/22 2:16 a.m.•1 views

CVE-2026-2907

A weakness has been identified in Tenda HG9 300001138. Affected by this vulnerability is an unknown functionality of the file /boaform/formgponConf of the component GPON Configuration Endpoint. This manipulation of the argument fmgponloid/fmgponloidpassword causes stack-based buffer overflow...

8.8CVSS6.2AI score

NVD•added 2026/02/22 2:16 a.m.•5 views

CVE-2026-2905

9CVSS0.00112EPSS

OSV•added 2026/02/22 2:16 a.m.•1 views

CVE-2026-2905

8.8CVSS6.5AI score

CVE•added 2026/02/22 2:2 a.m.•10 views

CVE-2026-2909

CVE-2026-2909 affects Tenda HG9 300001138. The vulnerability exists in the Diagnostic Ping Endpoint at /boaform/formPing, where manipulating the pingAddr argument triggers a stack-based buffer overflow. It is exploitable remotely, and public exploits exist. CVSS metrics indicate high impact acros...

9CVSS6.3AI score0.00112EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/22 2:2 a.m.•3 views

CVE-2026-2909 Tenda HG9 Diagnostic Ping Endpoint formPing stack-based overflow

9CVSS8.8AI score0.00112EPSS