Security Advisory

CVE-2026-4975

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-27 19:52:54

Last updated 2026-03-30 18:58:54

Assigner VulDB

State PUBLISHED

Description

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗