PatchSiren cyber security CVE debrief
CVE-2026-11528 Tenda CVE debrief
A high-severity vulnerability, CVE-2026-11528, was found in Tenda AC18 15.03.05.05. The vulnerability affects the function sub_45304 of the file /goform/getRebootStatus in the Web Management Interface. An attacker can exploit this vulnerability remotely, resulting in a stack-based buffer overflow. The CVSS score for this vulnerability is 7.4, indicating a high level of severity. The vulnerability was published on [cve-org](https://www.cve.org/CVERecord?id=CVE-2026-11528) and additional details can be found on [nvd](https://nvd.nist.gov/vuln/detail/CVE-2026-11528).
- Vendor
- Tenda
- Product
- AC18
- CVSS
- HIGH 7.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-09
Who should care
Administrators and users of Tenda AC18 15.03.05.05 are advised to take immediate action to mitigate this vulnerability.
Technical summary
The vulnerability is caused by a stack-based buffer overflow in the sub_45304 function of the /goform/getRebootStatus file in the Web Management Interface of Tenda AC18 15.03.05.05. This can be exploited remotely by manipulating the callback argument.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates provided by the vendor as soon as possible.
- Restrict access to the Web Management Interface to trusted users only.
- Monitor network traffic for suspicious activity.
Evidence notes
The vulnerability has been made public and could be used for malicious purposes.
Official resources
CVE-2026-11528 was published on 2026-06-08T16:16:37.473Z and modified on 2026-06-09T01:34:33.987Z.