CVE-2026-2908

Name of the Vulnerable Software and Affected Versions Tenda HG9 300001138 (affected versions not specified)

Description A security issue exists in Tenda HG9 300001138 related to stack-based buffer overflow. The issue is located within the file /boaform/formLoopBack of the Loopback Detection Configuration Endpoint component. Manipulation of the Ethtype argument can trigger the overflow, and the attack can be executed remotely. The exploit has been publicly disclosed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.