GHSA-hmh7-xjhg-5rc9HighCVSS 8.8
A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function...
🔗 CVE IDs covered (1)
📋 Description
A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRules of the file /goform/modifyWifiFilterRules of the component Web Management Interface. The manipulation of the argument wifiFilterListRemark leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
🔗 References (8)
- https://nvd.nist.gov/vuln/detail/CVE-2026-11524
- https://github.com/Robots10/IoT_vlu/blob/main/reports/Tenda/formWifiFilterRulesModify/modifyWifiFilterRules.md
- https://vuldb.com/cve/CVE-2026-11524
- https://vuldb.com/submit/836478
- https://vuldb.com/vuln/369144
- https://vuldb.com/vuln/369144/cti
- https://www.tenda.com.cn
- https://github.com/advisories/GHSA-hmh7-xjhg-5rc9