{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-4567/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["critical"],"_cs_tags":["cve-2026-4567","stack-based buffer overflow","tenda","router","remote code execution"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eA critical stack-based buffer overflow vulnerability, identified as CVE-2026-4567, has been discovered in Tenda A15 wireless routers running firmware version 15.13.07.13. The vulnerability resides in the \u003ccode\u003eUploadCfg\u003c/code\u003e function within the \u003ccode\u003e/cgi-bin/UploadCfg\u003c/code\u003e file, which handles file uploads.  A remote attacker can exploit this flaw by crafting a malicious request to the router, specifically targeting the \u003ccode\u003eFile\u003c/code\u003e argument, to overwrite the stack buffer and potentially gain arbitrary code execution…\u003c/p\u003e\n","date_modified":"2026-03-23T03:16:00Z","date_published":"2026-03-23T03:16:00Z","id":"/briefs/2026-03-tenda-a15-bo/","summary":"A stack-based buffer overflow vulnerability (CVE-2026-4567) exists in the UploadCfg function of the /cgi-bin/UploadCfg file in Tenda A15 firmware version 15.13.07.13, allowing remote attackers to execute arbitrary code by manipulating the File argument.","title":"Tenda A15 Router Stack-Based Buffer Overflow (CVE-2026-4567)","url":"https://feed.craftedsignal.io/briefs/2026-03-tenda-a15-bo/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-4567","version":"https://jsonfeed.org/version/1.1"}