NVD HIGH: CVE-2026-9428 — A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the fun...

Monday, May 25, 2026 at 07:16 AM UTC·Source: NIST NVD

Updated: Saturday, May 30, 2026 at 12:00 AM UTC

Executive Summary

A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSetting of the file /goform/PPTPUserSetting. Such manipulation of the argument delno leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

Analysis

Indicators of Compromise (2)

CVE (1)

CVE-2026-9428

NVD MITRE CVE

IPv4 (1)

1.2.0.20

VirusTotal Shodan AbuseIPDB

Source Attribution

Originally published by NIST NVD on May 25, 2026. Verified by: NIST.

Related Threats

CRITICALVulnerability

Vulnerability Disclosure in the Age of AI

New article: “ Responsible Disclosure in the Age of AI: A Call for Urgent Action ,” by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of autonomously identifying exploitable software vulnerabilities at unprecedented speed and scale. This development exposes de

1h agoSchneier on Security

MEDIUMVulnerability

Equals Money and Railsr rebrand as Equals

Equals Money and Railsr rebrands as Equals, the next-generation global money movement platform.

2h agoFinextra

MEDIUMVulnerability

BIS reports back on open finance Project Aperta

Project Aperta, led by the Bank for International Settlements (BIS), has been designing, developing and testing a prototype for cross-border open finance interconnectivity via application programming interfaces (APIs) – a "network of networks" that connects existing domestic networks through a neutral interoperability layer.

2h agoFinextra