Security Advisory

CVE-2026-5204

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-31 15:45:13

Last updated 2026-03-31 16:02:44

Assigner VulDB

State PUBLISHED

Description

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

← Browse all CVEs View on cve.org ↗