Medium severity6.3NVD Advisory· Published Feb 22, 2026· Updated Apr 29, 2026
CVE-2026-2930
CVE-2026-2930
Description
A vulnerability was identified in Tenda A18 15.13.07.13. The affected element is the function webCgiGetUploadFile of the file /cgi-bin/UploadCfg of the component Httpd Service. Such manipulation of the argument boundary leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:o:tenda:a18_firmware:15.13.07.13:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/master-abc/cve/issues/40nvdIssue Tracking
- vuldb.comnvdPermissions RequiredVDB Entry
- www.tenda.com.cnnvdProduct
News mentions
0No linked articles in our index yet.