CVE-2026-10191

EUVD-2026-33513
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function cgiWifiMacFilterSet of the file /bin/httpd. This manipulation of the argument wifiMacFilterSet.macList.mac causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
http://cdn2.v50to.cc/cgiWifiMacFilterSet_overflow.zip
https://vuldb.com/cve/CVE-2026-10191
https://vuldb.com/submit/820023
https://vuldb.com/vuln/367472
https://vuldb.com/vuln/367472/cti
https://www.tenda.com.cn/