Unrated severityNVD Advisory· Published Mar 2, 2026· Updated Mar 5, 2026

CVE-2026-24111

Description

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of userInfo. When userInfo is passed into the addAuthUser function and processed by sscanf without size validation, it could lead to buffer overflow.

Affected products

Tenda/W20Edescription
Tenda/W20Ellm-fuzzy
Range: = V4.0br firmware V15.11.0.11.0.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/akuma-QAQ/CVEreport/tree/main/D-link/CVE-2026-24111mitre
www.tenda.com.cn/material/show/2707mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000