VYPR
Unrated severityNVD Advisory· Published Mar 2, 2026· Updated Mar 5, 2026

CVE-2026-24111

CVE-2026-24111

Description

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of userInfo. When userInfo is passed into the addAuthUser function and processed by sscanf without size validation, it could lead to buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Tenda/W20Ecpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V4.0br firmware V15.11.0.11.0.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.