Buffer Overflow in Tenda BE12 Pro Router
CVE-2026-15693
Key Information:
Badges
What is CVE-2026-15693?
A critical security vulnerability has been identified in the Tenda BE12 Pro router, specifically in the 'fromSafeMacFilter' function located in the '/goform/SafeMacFilter' file. This vulnerability allows for a stack-based buffer overflow due to improper handling of input arguments, which can be exploited remotely by an attacker. The exploit has been publicly disclosed and poses a significant risk to users, as successful exploitation can lead to unauthorized access and control of the affected device.
Affected Version(s)
BE12 Pro 16.03.66.23
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
CVSS V4
Timeline
- ๐ก
Public PoC available
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved