CVE-2026-4254Improper Restriction of Operations within the Bounds of a Memory Buffer in AC8 Firmware

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-121Stack-based Buffer OverflowCWE-787Out-of-bounds Write3 documents3 sources
Severity
8.9HIGHNVD
EPSS
0.2%
top 63.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Tenda AC8 FirmwareTenda AC8
Timeline
PublishedMar 16

Description

A weakness has been identified in Tenda AC8 up to 16.03.50.11. This vulnerability affects the function doSystemCmd of the file /goform/SysToolChangePwd of the component HTTP Endpoint. This manipulation of the argument local_2c causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

NVDtenda/ac8_firmware16.03.50.11
CVEListV5tenda/ac812 versions+11

🔴Vulnerability Details

2
GHSA
GHSA-7ppq-fx8r-g889: A weakness has been identified in Tenda AC8 up to 162026-03-16
CVEList
Tenda AC8 HTTP Endpoint SysToolChangePwd doSystemCmd stack-based overflow2026-03-16
CVE-2026-4254 — Tenda AC8 Firmware vulnerability | cvebase