https://feed.craftedsignal.io/tags/cve-2026-5046/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioSun, 29 Mar 2026 15:16:36 +0000https://feed.craftedsignal.io/briefs/2026-03-tenda-overflow/Sun, 29 Mar 2026 15:16:36 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-tenda-overflow/A stack-based buffer overflow vulnerability (CVE-2026-5046) in Tenda FH1201 version 1.2.0.14(408) allows remote attackers to execute arbitrary code by manipulating the GO argument in the formWrlExtraSet function of the /goform/WrlExtraSet component.CVE-2026-5046 is a stack-based buffer overflow vulnerability affecting Tenda FH1201 routers running firmware version 1.2.0.14(408). The vulnerability resides within the formWrlExtraSet function of the /goform/WrlExtraSet component, specifically in the handling of the GO argument. A remote attacker can exploit this flaw by sending a crafted HTTP request with a maliciously oversized GO parameter, overwriting the stack and potentially gaining arbitrary code execution on the device. The…

]]>criticaladvisoryCVE-2026-5046tendabuffer-overflowrouter