Exploit for CVE-2026-2187

A vulnerability was found in Tenda RX3 16.03.13.11. The affected element is the function set_qosMib_list of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made public and could be used.

Published: 2026-02-08

CVSS: 9.0

CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Download Exploit for CVE-2026-2187 here:

http://zeroday6mns52t72y3rsle7f72wca5uwn2xzktdysf72flozx7sv4mqd.onion/exploit-for-cve-2026-2187.724/

Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.

Check our portfolio:

http://zeroday6mns52t72y3rsle7f72wca5uwn2xzktdysf72flozx7sv4mqd.onion/members/veletateam.344/

https://veletacapital.com/exploit-28-cve-2025-52626/

https://veletacapital.com/exploit-356-cve-2025-70149/

https://veletacapital.com/exploit-157-cve-2020-37162/

https://veletacapital.com/exploit-737-cve-2026-21660/

https://veletacapital.com/exploit-222-cve-2026-2234/