What is the CVSS score of EUVD-2026-38050?

EUVD-2026-38050 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.4%.

Which versions of Tenda AC7 are affected by EUVD-2026-38050?

A critical memory-corruption vulnerability (CVE-2026-51844, CVSS 9.8) in Tenda AC7 router firmware v15.03.06.44 enables unauthenticated remote attack on network edge infrastructure, putting…

How to fix or mitigate EUVD-2026-38050?

24 hours: Inventory all Tenda AC7 routers running firmware v15.03.06.44 and immediately restrict administrative interface access via firewall rules; block internet-facing access to the /goform/AdvSetMacMtuWan endpoint. 7 days: Contact Tenda support for patch timeline and interim firmware versions; implement network segmentation to isolate affected routers from critical infrastructure; deploy IDS signatures for /goform/AdvSetMacMtuWan endpoint anomalies. 30 days: Execute hardware replacement with alternative router models or deploy vendor-released patch if available; continuously monitor Tenda security advisories.

Tenda AC7 EUVD-2026-38050

| CVE-2026-51844 CRITICAL

Stack-based Buffer Overflow (CWE-121)

2026-06-19 cve@mitre.org

GHSA-g533-f37w-h6w3

Stack Overflow Buffer Overflow Tenda

9.8

CVSS 3.1 · Vendor: mitre

Severity by source

Vendor (mitre) PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

vuln.today AI

9.8 CRITICAL

Pre-auth /goform handler reachable over HTTP with no user interaction; stack overflow yields code execution as root on the device, giving full C/I/A impact within the same scope.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (mitre).

CVSS VectorVendor: mitre

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Jun 22, 2026 - 19:08 vuln.today

CVSS changed

Jun 22, 2026 - 18:23 NVD

9.8 (CRITICAL)

CVE Published

Jun 19, 2026 - 17:16 cve.org

UNKNOWN (no severity yet)

DescriptionCVE.org

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the cloneType parameter.

AnalysisAI

Stack buffer overflow in Tenda AC7 router firmware v15.03.06.44 allows remote attackers to corrupt memory via an oversized cloneType parameter sent to the /goform/AdvSetMacMtuWan web interface endpoint. The CVSS 9.8 vector indicates unauthenticated network exploitation with high impact to confidentiality, integrity, and availability. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Reach router HTTP interface on LAN or WAN

Delivery

Send POST to /goform/AdvSetMacMtuWan with oversized cloneType

Exploit

Overflow stack buffer and overwrite saved return address

Execution

Redirect execution to MIPS shellcode or ROP chain

Persist

Gain root-level code execution in httpd context

Impact

Install persistent backdoor or hijack DNS

Access

Reach router HTTP interface on LAN or WAN

Delivery

Send POST to /goform/AdvSetMacMtuWan with oversized cloneType

Exploit

Overflow stack buffer and overwrite saved return address

Execution

Redirect execution to MIPS shellcode or ROP chain

Persist

Gain root-level code execution in httpd context

Impact

Install persistent backdoor or hijack DNS

Vulnerability AssessmentAI

Exploitation	Exploitation requires network reachability to the router's HTTP management interface on the port where /goform/AdvSetMacMtuWan is served (default LAN web UI, or WAN if 'Remote Web Management' has been enabled by the operator), and the device must be running firmware 15.03.06.44 (other builds not enumerated in the provided data). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:N rates this as critical (9.8) and remotely exploitable without authentication or user interaction, which is consistent with the described pre-auth /goform handler reachable over HTTP. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker on the same network segment as the router (or on the Internet if remote management is enabled) sends a single crafted HTTP POST to /goform/AdvSetMacMtuWan with an overlong cloneType value, smashing the stack of the httpd process and redirecting execution to attacker-controlled shellcode or a ROP chain on the MIPS firmware. Successful exploitation yields code execution as the web daemon (typically root on Tenda firmware), enabling persistent backdooring, DNS hijacking, or use of the device as a botnet node. …
Remediation	No vendor-released patch identified at time of analysis - the input contains no Tenda advisory URL, fixed firmware version, or KB article, so administrators should monitor https://www.tendacn.com for an AC7 firmware update superseding 15.03.06.44 and apply it once published. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

24 hours: Inventory all Tenda AC7 routers running firmware v15.03.06.44 and immediately restrict administrative interface access via firewall rules; block internet-facing access to the /goform/AdvSetMacMtuWan endpoint. …

Threat intelligence, references, and detailed analysis are available after sign-in.