CVE Catalog

CVE-2026-11503

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Summary

A vulnerability has been detected in Tenda CX12L 16.03.53.12, affecting the function form_fast_setting_wifi_set in the file /goform/fast_setting_wifi_set. Manipulation of the argument ssid leads to stack-based buffer overflow.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to the security of the device and the network.

Recommendation

It is recommended to update the device firmware to the latest version to mitigate this vulnerability.

Original NVD description (English source)

A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set of the component Wi-Fi Configuration Endpoint. Such manipulation of the argument ssid leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS