CVE-2026-6988

CVSS v2.0

9.0

High

AV:N/AC:L/Au:S/C:C/I:C/A:C

A flaw has been found in Tenda HG10 HG7 HG9 HG10re 300001138 en xpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120CWE-119

Related Identifiers

CVE-2026-6988

Affected Products

Hg10

CVE-2026-6988

Weakness Enumeration

Related Identifiers

Affected Products

References · 8