A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon . It has been rated as critical . Affected by this issue is the function asp_voip_OtherSet of the file /boaform/voip_other_set of the component Web Management Interface . Performing a manipulation of the argument funckey_transfer results in stack-based buffer overflow. This vulnerability is reported as CVE-2026-11498 . The attack is possible to be carried out remotely. No exploit exists.