Vulnerability Key Information Summary 1. Vulnerability Overview Vulnerability Name: Tenda CH22 1.0.0.1 Parameter /goform/QuickIndex formQuickIndex mit_linktype stack-based overflow CVE ID: CVE-2026-5156 Vulnerability Type: Stack-based overflow Severity: Critical Detailed Description: This vulnerability exists in the function (located in the file) of Tenda CH22 version 1.0.0.1. When processing the parameter, a lack of proper boundary checks leads to a stack overflow. Attackers can remotely exploit this vulnerability with low difficulty (Easy). 2. Scope of Impact Vendor: Tenda Product: CH22 (Router Operating System) Affected Versions: 1.0.0.1 3. Remediation Official Patch: The page indicates that there are currently no known mitigations or patches available (no mitigation known). Recommended Actions: It is recommended to replace the affected object with an alternative product. 4. POC/Exploit Code The screenshot does not directly contain specific POC code blocks. The page indicates that the exploit code can be obtained from GitHub and is declared as a Proof-of-Concept. The submission record is listed as: .