CVE-2026-36806

Vulnerability

A buffer overflow vulnerability exists in the formModifyWebAuthUser function of Shenzhen Tenda Technology Co., Ltd Tenda W15E firmware version v15.11.0.10. The vulnerability is triggered when the webAuthUserPwd parameter, along with webAuthUser, is used in a sprintf command without proper bounds checking, specifically when these parameters are not null [1].

Exploitation

An attacker can exploit this vulnerability by sending a crafted HTTP request to the formModifyWebAuthUser CGI endpoint. The request must include parameters such as WebAuthUserIndex, webAuthUser, and webAuthUserPwd. By providing an excessively long value for webAuthUserPwd (e.g., a*888 or more), the buffer overflow can be triggered [1].

Impact

Successful exploitation of this vulnerability results in a Denial of Service (DoS) condition. This can manifest as a process crash or device instability, rendering the Tenda W15E router inoperable for legitimate users [1].

Mitigation

No specific patched version or mitigation details are available in the provided references. The vulnerability was publicly disclosed on 2026-06-06 [1].