Description
A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the function formPPPEdit of the file /boaform/formPPPEdit. The manipulation of the argument encodename results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used.
Published: 2026-06-08
Score: 8.7 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a stack-based buffer overflow in the formPPPEdit function of the Tenda HG7HG9 and HG10 firmware, triggered by manipulation of the encodename argument. This flaw falls under CWE-119 and CWE-121 and can lead to arbitrary code execution when exploited. Attackers can invoke the vulnerable endpoint remotely, as the exploit is publicly available.

Affected Systems

Affected products include Tenda HG7HG9 and HG10 routers running firmware 300001138_en_xpon. Users of these models are at risk if they have not patched the firmware or restricted remote access to the device’s management interface.

Risk and Exploitability

The vulnerability carries a CVSS score of 8.7, indicating high severity. Although the EPSS score is not available, the public availability of an exploit and the remote nature of the attack vector suggest a considerable risk of exploitation. The flaw is not listed in CISA’s KEV catalog, but the potential for remote code execution makes immediate action advisable.

Generated by OpenCVE AI on June 8, 2026 at 19:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Tenda routers to the latest firmware version that resolves the formPPPEdit buffer overflow.
  • Disable or restrict remote access to the router’s web interface, particularly the /boaform/formPPPEdit endpoint, by configuring LAN-only or VPN-only access.
  • Apply network segmentation or firewall rules to block traffic to the formPPPEdit endpoint from untrusted networks.

Generated by OpenCVE AI on June 8, 2026 at 19:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 08 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 08 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the function formPPPEdit of the file /boaform/formPPPEdit. The manipulation of the argument encodename results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used.
Title Tenda HG7HG9/HG10 formPPPEdit stack-based overflow
First Time appeared Tenda
Tenda hg10
Tenda hg7hg9
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:h:tenda:hg10:*:*:*:*:*:*:*:*
cpe:2.3:h:tenda:hg7hg9:*:*:*:*:*:*:*:*
Vendors & Products Tenda
Tenda hg10
Tenda hg7hg9
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Tenda Hg10 Hg7hg9
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-08T18:49:14.135Z

Reserved: 2026-06-08T05:43:31.214Z

Link: CVE-2026-11553

cve-icon Vulnrichment

Updated: 2026-06-08T18:49:09.699Z

cve-icon NVD

Status : Received

Published: 2026-06-08T18:16:32.480

Modified: 2026-06-08T18:16:32.480

Link: CVE-2026-11553

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-08T19:30:06Z

Weaknesses