CVE-2026-10189NVD

Description

A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity Level

HIGH (8.8)

Published Date

31/05/2026

Last Modified

01/06/2026

Exploitation Status

????

References

https://vuldb.com/vuln/367470
https://vuldb.com/vuln/367470/cti
https://vuldb.com/cve/CVE-2026-10189
https://vuldb.com/submit/820021
http://cdn2.v50to.cc/cgiSysTimeInfoSet_overflow.zip
https://www.tenda.com.cn/

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-10189NVD

Description

References