Is Stack Overflow affected by EUVD-2026-13754?

A critical remote code execution vulnerability (CVE-2026-4493) affects Tenda A18 Pro routers, allowing authenticated attackers to gain complete control of affected devices.

EUVD-2026-13754

| CVE-2026-4493 HIGH

2026-03-20 VulDB

8.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

PoC Detected

Mar 24, 2026 - 15:54 vuln.today

Public exploit code

Analysis Generated

Mar 20, 2026 - 17:45 vuln.today

EUVD ID Assigned

Mar 20, 2026 - 17:45 euvd

EUVD-2026-13754

CVE Published

Mar 20, 2026 - 17:32 nvd

HIGH 8.8

Description

A vulnerability was determined in Tenda A18 Pro 02.03.02.28. The impacted element is the function sub_423B50 of the file /goform/setMacFilterCfg of the component MAC Filtering Configuration Endpoint. Executing a manipulation of the argument deviceList can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.

Analysis

Stack-based buffer overflow in Tenda A18 Pro MAC filtering configuration allows remote authenticated attackers to achieve full system compromise through manipulation of the deviceList parameter. Public exploit code exists for this vulnerability, and no patch is currently available. …

Remediation

Within 24 hours: Inventory all Tenda A18 Pro routers in your environment and isolate firmware version 02.03.02.28 devices from production networks if possible. Within 7 days: Implement network segmentation to restrict administrative access to the MAC Filtering Configuration endpoint and monitor for suspicious authentication attempts. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +44

POC: +20

EUVD-2026-13754 vulnerability details – vuln.today

Back

EUVD-2026-13754

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

EUVD-2026-13754

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code