Which versions of Tenda HG10 are affected by CVE-2026-6988?

CVE-2026-6988 is a high-severity remote code execution vulnerability affecting Tenda HG10 routers that allows authenticated attackers to achieve complete device compromise through a buffer overflow…

Is there a public PoC exploit available for CVE-2026-6988?

Yes, a public proof-of-concept exploit is available for CVE-2026-6988. Prioritise patching immediately. EPSS: 0.0%.

Tenda HG10 CVE-2026-6988

Q: What is the CVSS score of CVE-2026-6988?

CVE-2026-6988 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-25664 HIGH

Classic Buffer Overflow (CWE-120)

2026-04-25 VulDB

Buffer Overflow Tenda

7.4

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Apr 30, 2026 - 14:10 vuln.today

Public exploit code

Re-analysis Queued

Apr 25, 2026 - 18:22 vuln.today

cvss_changed

CVSS changed

Apr 25, 2026 - 18:22 NVD

8.8 (HIGH) 7.4 (HIGH)

Analysis Generated

Apr 25, 2026 - 18:00 vuln.today

EUVD ID Assigned

Apr 25, 2026 - 17:45 euvd

EUVD-2026-25664

Analysis Generated

Apr 25, 2026 - 17:45 vuln.today

CVE Published

Apr 25, 2026 - 17:00 nvd

HIGH 7.4

DescriptionNVD

A flaw has been found in Tenda HG10 HG7_HG9_HG10re_300001138_en_xpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This manipulation of the argument nextHop causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used.

AnalysisAI

Remote authenticated attackers can execute arbitrary code on Tenda HG10 routers (firmware HG7_HG9_HG10re_300001138_en_xpon) by sending a malformed 'nextHop' parameter to the /boaform/formRouting endpoint in the Boa web service. This buffer overflow vulnerability has publicly available exploit code on GitHub and is rated 8.8 (High) with low attack complexity. …

RemediationAI

Within 24 hours: Identify and inventory all Tenda HG10 routers running firmware HG7_HG9_HG10re_300001138_en_xpon or earlier versions via network scans and asset management systems. Within 7 days: Restrict network access to affected router administration interfaces using firewall rules, implement network segmentation to isolate affected devices, and disable remote management capabilities where feasible. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-6988 vulnerability details – vuln.today

Back

Tenda HG10 CVE-2026-6988

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Tenda HG10 CVE-2026-6988

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code