CVE-2026-36809
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk49th percentile - higher than 49% of all known CVEs
Summary
A buffer overflow vulnerability was discovered in the webAuthWhiteID parameter of the formModifyWebAuthWhiteUser function in Tenda W15E version 15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
Risk Assessment
The organization may experience service outages, leading to disruptions in operational activities. A DoS attack may also impact the company's reputation.
Recommendation
It is recommended to update the device firmware to the latest version to mitigate this vulnerability. Additionally, monitoring network traffic for potential DoS attacks is advisable.
Original NVD description (English source)
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthWhiteID parameter of the formModifyWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

