CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.10)

CVE-2026-36815
High

A buffer overflow vulnerability was discovered in the hostname parameter of the formSetNetCheckTools function in Tenda W15E version 15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36813
High

A buffer overflow vulnerability was discovered in the picCropName parameter of the formCropAndSetWewifiPic function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36811
High

A buffer overflow vulnerability was discovered in the picName parameter of the formDelwebAuthPic function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36810
High

A buffer overflow vulnerability was discovered in the gotoUrl parameter of the formPortalAuth function in Tenda W15E version 15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36809
High

A buffer overflow vulnerability was discovered in the webAuthWhiteID parameter of the formModifyWebAuthWhiteUser function in Tenda W15E version 15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36808
High

A buffer overflow vulnerability was discovered in the webAuthUserInfo parameter of the formAddWebAuthUser function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36807
High

A buffer overflow vulnerability was discovered in the webAuthUserPwd parameter of the formAddWebAuthUser function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36806
High

A buffer overflow was discovered in the webAuthUserPwd parameter of the formModifyWebAuthUser function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36805
High

Multiple buffer overflows were discovered in the Saveqqlist function of Tenda G0 version 15.11.0.5, triggered by the qqStr and markStr parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36803
High

A buffer overflow vulnerability was discovered in the page parameter of the qossetting function in Tenda PW201A v1.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36802
High

A buffer overflow vulnerability was discovered in the page parameter of the SafeMacFilter function in Tenda PW201A v1.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36801
High

A buffer overflow was discovered in the IPMacBindRule parameter of the formIPMacBindAdd function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36800
High

A buffer overflow was discovered in the IPMacBindIndex parameter of the formIPMacBindDel function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36799
High

A buffer overflow was discovered in the portalAuth parameter of the formPortalAuth function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36797
High

A stack overflow was discovered in the IPMacBindRuleIp parameter of the formIPMacBindModify function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36796
High

A stack overflow was discovered in the picCropName parameter of the formCropAndSetWewifiPic function in Tenda G0 version 15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36794
High

Multiple stack overflows were discovered in the R7WebsSecurityHandler function in the Tenda W3 Wireless Router v1.0.0.3(2204), triggered by the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36793
High

The Tenda W3 wireless router version 1.0.0.3(2204) contains multiple stack overflows in the formwrlSSIDset function triggered by the mit_ssid and mis_ssid_index parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36792
High

A stack overflow was discovered in the wl_radio parameter of the formWifiRadioSet function in the Tenda W3 Wireless Router v1.0.0.3(2204). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

CVE-2026-36791
High

A stack overflow vulnerability was discovered in the save_list_data parameter of the formSetCfm function in Tenda O3v3 v1.0.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

PreviousPage 159 of 3358Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS