CVE-2026-36803
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk49th percentile - higher than 49% of all known CVEs
Summary
A buffer overflow vulnerability was discovered in the page parameter of the qossetting function in Tenda PW201A v1.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
Risk Assessment
This vulnerability may lead to service unavailability, impacting the organization's operational continuity. Attackers can remotely disrupt access to the device.
Recommendation
It is recommended to update the device firmware to the latest version to mitigate this vulnerability. Additionally, monitor HTTP traffic for potential attack attempts.
Original NVD description (English source)
Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the qossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

