CVE-2026-51844
Received Received - Intake
Stack Buffer Overflow in Tenda AC7 Router

Publication date: 2026-06-19

Last updated on: 2026-06-19

Assigner: MITRE

Description
Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the cloneType parameter.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-19
Last Modified
2026-06-19
Generated
2026-06-19
AI Q&A
2026-06-19
EPSS Evaluated
N/A
NVD
CVE-2026-51844
EUVD
EUVD-2026-38050
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
tenda ac7 15.03.06.44
tenda ac7 From 15.03.06.44 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-51844 is a stack buffer overflow vulnerability found in Tenda AC7 routers running firmware version V15.03.06.44 and possibly earlier versions.

The vulnerability exists in the /goform/AdvSetMacMtuWan interface, specifically in the cloneType parameter.

The issue arises because the check_param_changed method uses the strcpy function to copy user-controlled input into a stack buffer without validating the size, which can lead to a stack overflow.

Attackers can exploit this by sending a specially crafted HTTP POST request with an excessively long cloneType value, triggering the overflow.

Impact Analysis

This vulnerability can allow attackers to cause denial-of-service (DoS) conditions by crashing the router.

More critically, it may enable remote arbitrary code execution, allowing attackers to run malicious code on the affected device.

Detection Guidance

This vulnerability can be detected by sending a crafted HTTP POST request to the /goform/AdvSetMacMtuWan interface with an excessively long cloneType parameter value.

A detection method involves monitoring for unusual or malformed HTTP POST requests targeting the /goform/AdvSetMacMtuWan endpoint, especially those containing abnormally long cloneType parameters.

For active testing, you could use tools like curl or custom scripts to send a POST request with a long cloneType parameter to see if the device behaves unexpectedly (e.g., crashes or restarts).

  • Example curl command to test the vulnerability: curl -X POST http://<router-ip>/goform/AdvSetMacMtuWan -d "cloneType=$(python -c 'print("A"*1000)')"

Additionally, network intrusion detection systems (NIDS) can be configured to alert on HTTP POST requests to /goform/AdvSetMacMtuWan with unusually long cloneType parameters.

Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable /goform/AdvSetMacMtuWan interface to trusted networks or IP addresses only.

Disabling remote management or administration features on the Tenda AC7 router can reduce exposure to this vulnerability.

Monitor the router for unusual behavior such as crashes or reboots that may indicate exploitation attempts.

Apply any available firmware updates or patches from the vendor that address this vulnerability once they become available.

As a temporary measure, consider implementing network-level protections such as firewall rules to block suspicious HTTP POST requests targeting /goform/AdvSetMacMtuWan.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-51844. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart