Description
A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used.
Published: 2026-03-26
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Potential Remote Code Execution via Buffer Overflow
Action: Immediate Patch
AI Analysis

Impact

A stack-based buffer overflow occurs when the fromAddressNat function in the /goform/addressNat POST handler processes the page parameter. The overflow can corrupt the stack and may enable an attacker to execute arbitrary code, compromising the device’s confidentiality, integrity, and availability. The flaw is classified as CWE-119 and CWE-121.

Affected Systems

Devices affected are Tenda AC5 routers running firmware version 15.03.06.47. The vulnerability is confined to the addressNat component of the web interface and does not extend to other Tenda products.

Risk and Exploitability

With a CVSS base score of 8.7 the vulnerability is high severity. EPSS data is not available and the issue is not listed in the CISA KEV catalog, yet the public availability of the exploit and the fact that the attack can be performed over the network raise the likelihood of real‑world exploitation. Administrators should treat it as a priority risk.

Generated by OpenCVE AI on March 27, 2026 at 07:07 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the router to the latest firmware released by Tenda that fixes the buffer overflow in the /goform/addressNat handler.
  • If a firmware update is not immediately possible, block or restrict POST traffic to /goform/addressNat using the device’s firewall or ACL to prevent remote exploitation.
  • Monitor device logs for abnormal POST requests to the addressNat endpoint and investigate suspicious activity.
  • Apply any vendor-released protective configuration changes or workarounds if provided in future advisories.

Generated by OpenCVE AI on March 27, 2026 at 07:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 27 Mar 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 27 Mar 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared Tenda ac5
Vendors & Products Tenda ac5

Fri, 27 Mar 2026 04:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used.
Title Tenda AC5 POST Request addressNat fromAddressNat memory corruption
First Time appeared Tenda
Tenda ac5 Firmware
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:o:tenda:ac5_firmware:*:*:*:*:*:*:*:*
Vendors & Products Tenda
Tenda ac5 Firmware
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Tenda Ac5 Ac5 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-03-27T13:54:48.568Z

Reserved: 2026-03-26T15:57:49.630Z

Link: CVE-2026-4902

cve-icon Vulnrichment

Updated: 2026-03-27T13:29:22.002Z

cve-icon NVD

Status : Received

Published: 2026-03-26T23:16:21.090

Modified: 2026-03-26T23:16:21.090

Link: CVE-2026-4902

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-27T09:22:58Z

Weaknesses