{"cve_id":"CVE-2026-2202","summary":"A vulnerability was detected in Tenda AC8 16.03.33.05. Affected is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet of the component httpd. The manipulation of the argument shareSpeed results in buffer overflow. The attack may be launched remotely. The exploit is now public and may be used.","cvss":8.8,"cvss_version":3.0,"cvss_v2":9.0,"cvss_v3":8.8,"epss":0.00096,"ranking_epss":0.26575,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/Tenda/AC8/WifiGuestSet-sharespeed-bufferoverflow.md","https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/Tenda/AC8/WifiGuestSet-sharespeed-bufferoverflow.md#poc","https://vuldb.com/?ctiid.344905","https://vuldb.com/?id.344905","https://vuldb.com/?submit.750225","https://www.tenda.com.cn/"],"published_time":"2026-02-09T03:16:13","cpes":["cpe:2.3:h:tenda:ac8:-","cpe:2.3:o:tenda:ac8_firmware:16.03.33.05"]}