PT-2026-6984 · Tenda · Tenda Rx3
Lx-66-Lx
·
Published
2026-02-07
·
Updated
2026-02-09
·
CVE-2026-2187
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Tenda RX3 version 16.03.13.11
Description
A stack-based buffer overflow exists in the
set qosMib list function located in the /goform/formSetQosBand file. Manipulation of arguments to this function can trigger the overflow, allowing for remote attacks. The exploit for this issue has been made public.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tenda Rx3