VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 9, 2026· Updated Jun 9, 2026

CVE-2026-36798

CVE-2026-36798

Description

Tenda G0 v15.11.0.5 has stack overflows in formSetDebugCfgr and formPortalAuth, allowing DoS or RCE via crafted HTTP requests.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Tenda G0 v15.11.0.5 has stack overflows in formSetDebugCfgr and formPortalAuth, allowing DoS or RCE via crafted HTTP requests.

Vulnerability

Multiple stack overflows exist in the formSetDebugCfgr function of Tenda G0 v15.11.0.5, triggered by the enable, level, and module parameters. Additionally, the formPortalAuth function in the same firmware version is vulnerable to arbitrary code execution due to improper handling of user-influenced HTTP parameters like enable, level, and module which are used in a system() command [1].

Exploitation

An attacker can exploit these vulnerabilities by sending a crafted HTTP request to the affected CGI endpoints. For formSetDebugCfgr, this can lead to a Denial of Service. For formPortalAuth, an attacker can achieve arbitrary code execution by providing overly long or specially crafted values for the enable, level, or module parameters, such as 1;telnet 127.0.0.1 80;o or a*888 [1].

Impact

Successful exploitation can result in a Denial of Service, causing process crashes or device instability. Furthermore, the formPortalAuth vulnerability allows for Arbitrary Code Execution, granting the attacker significant control over the affected device [1].

Mitigation

No patched version or specific mitigation details are currently available in the provided references. The vulnerability affects Tenda G0 v15.11.0.5 [1].

References
  1. SemVulLLM/G0/formSetDebugCfg at main · xhh0124/SemVulLLM

AI Insight generated on Jun 9, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

1

News mentions

0

No linked articles in our index yet.