CVE Catalog

CVE-2026-36805

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

Multiple buffer overflows were discovered in the Saveqqlist function of Tenda G0 version 15.11.0.5, triggered by the qqStr and markStr parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

Risk Assessment

The organization may experience service outages, leading to loss of customer trust and potential financial losses.

Recommendation

It is recommended to update the device firmware to the latest version to mitigate these vulnerabilities and to monitor network traffic for potential attacks.

Original NVD description (English source)

Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer overflows in the Saveqqlist function via the qqStr and markStr parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS