CVE-2026-36801
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk49th percentile - higher than 49% of all known CVEs
Summary
A buffer overflow was discovered in the IPMacBindRule parameter of the formIPMacBindAdd function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
Risk Assessment
This vulnerability may lead to service disruption, affecting the availability of the device on the network. Attackers could exploit this flaw to carry out DoS attacks.
Recommendation
It is recommended to update the device firmware to the latest version to mitigate this vulnerability. Additionally, monitor HTTP traffic for potential attack attempts.
Original NVD description (English source)
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindRule parameter of the formIPMacBindAdd function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

