CVE-2026-5604: Tenda CH22 Stack Overflow - HIGH
Plattform
linux
Komponente
tenda
CVE-2026-5604 describes a stack-based buffer overflow vulnerability found in the Tenda CH22 router, specifically within the Parameter Handler's /goform/CertLocalPrecreate function. Successful exploitation allows for remote code execution, potentially granting an attacker control over the device. This vulnerability affects versions 1.0.0 through 1.0.0.1, and as of the publication date, no official patch has been released.
So beheben
Kein offizieller Patch verfügbar. Prüfe auf Workarounds oder überwache auf Updates.
Häufig gestellte Fragen
What is CVE-2026-5604?
CVE-2026-5604 is a security vulnerability in the Tenda CH22 router that allows an attacker to trigger a stack-based buffer overflow by manipulating a specific parameter. This can lead to remote code execution.
Am I affected by CVE-2026-5604?
You are potentially affected if you are using a Tenda CH22 router running version 1.0.0 or 1.0.0.1. The vulnerability is publicly known and an exploit exists.
How can I fix or mitigate CVE-2026-5604?
As of the publication date, no official patch is available from Tenda. Consider isolating the affected device from the internet or implementing strict firewall rules as a temporary mitigation.
Abhängigkeiten automatisch überwachen
Werde benachrichtigt, wenn neue Schwachstellen deine Projekte betreffen. Für immer kostenlos.
Kostenlos starten