Security Advisory

CVE-2026-5154

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-30 22:30:14

Last updated 2026-03-31 13:32:22

Assigner VulDB

State PUBLISHED

Description

A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗