GHSA-pj5q-9vg7-6xmxHighCVSS 8.8

A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of...

Published
June 8, 2026
Last Modified
June 8, 2026

🔗 CVE IDs covered (1)

📋 Description

A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the file /goform/PortalAuth of the component Web Management Interface. Executing a manipulation of the argument gotoUrl can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.

🔗 References (8)