Tenda has two buffer overflow CVEs in this period across different router models, both with public exploits available. CVE-2026-4567 (CVSS 9.8, Critical) in the A15 is unauthenticated and targets the UploadCfg function; CVE-2026-4565 (CVSS 8.8, High) in the AC21 targets the formSetQosBand function via the SetNetControlList endpoint. No confirmed patches are available in source data for either CVE; organizations should block web management interface access from untrusted networks immediately and monitor Tenda’s support channels for firmware updates.