These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6. The vulnerability is located in the webAuthUserInfo parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 7.5, indicating a HIGH severity.
A buffer overflow vulnerability was discovered in the macAddr parameter of the formDelStaState function in Tenda W20E v15.11.0.6. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6. The vulnerability is located in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function in Tenda W20E v15.11.0.6. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability was published on [cvePublishedAt] and last modified on [cveModifiedAt].
CVE-2026-36819 is a HIGH severity vulnerability in Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6. The vulnerability is caused by a buffer overflow in the bindMACAddr parameter of the fromSetDhcpRules function. This allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and was published on [cvePublishedAt](https://www.cve.org/CV [truncated]
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6. The vulnerability is located in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 7.5, indicating [truncated]
A buffer overflow vulnerability was discovered in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function in Tenda W15E v15.11.0.10. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 in the hostname parameter of the formSetNetCheckTools function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in the picCropName parameter of the formCropAndSetWewifiPic function in Tenda W15E v15.11.0.10. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A buffer overflow vulnerability was discovered in the picName parameter of the formDelwebAuthPic function in Tenda W15E v15.11.0.10. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10. The vulnerability is located in the webAuthWhiteID parameter of the formModifyWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in the webAuthUserInfo parameter of the formAddWebAuthUser function in Tenda W15E v15.11.0.10. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability was published on [cve-published-at]2026-06-09T19:17:46.520Z[/cve-published-at] and last modified on [cve-mod [truncated]
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 in the webAuthUserPwd parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10. The vulnerability is located in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 7.5, indicating a HIGH severity.
A buffer overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5. The vulnerability is located in the page parameter of the SafeMacFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 7.5, indicating a HIGH severity.
A buffer overflow vulnerability was discovered in the IPMacBindRule parameter of the formIPMacBindAdd function in Tenda G0 v15.11.0.5. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A buffer overflow vulnerability was discovered in the IPMacBindIndex parameter of the formIPMacBindDel function in Tenda G0 v15.11.0.5. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A buffer overflow vulnerability was discovered in the portalAuth parameter of the formPortalAuth function in Tenda G0 v15.11.0.5. This HIGH severity vulnerability, with a CVSS score of 7.5, allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability was published on [cve-org](https://www.cve.org/CVERecord?id=CVE-2026-36799) and additional details can be found on [nvd] [truncated]
CVE-2026-36798 is a MEDIUM severity vulnerability in Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5. The vulnerability was discovered in the formSetDebugCfgr function via the enable, level, and module parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability was published on [cve-org](https://www.cve.org/CVERecord?id=CVE-2026 [truncated]
A stack overflow vulnerability was discovered in the IPMacBindRuleIp parameter of the formIPMacBindModify function in Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A stack overflow vulnerability was discovered in the picCropName parameter of the formCropAndSetWewifiPic function in Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204). The formwrlSSIDset function contains multiple stack overflows via the mit_ssid and mis_ssid_index parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
A stack overflow vulnerability was discovered in the Tenda W3 Wireless Router v1.0.0.3(2204) in the wl_radio parameter of the formWifiRadioSet function. This issue allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and is classified as HIGH severity.
A vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda O3v3 v1.0.0.5. The stack overflow occurs in the save_list_data parameter of the formSetCfm function, allowing attackers to cause a Denial of Service (DoS) via a crafted HTTP request. This vulnerability has a CVSS score of 7.5 and a severity of HIGH.
A stack overflow vulnerability was discovered in Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180). The vulnerability exists in the ip parameter of the fromNetToolGet function, which allows attackers to cause a Denial of Service (DoS) via a HTTP request. The vulnerability has a CVSS score of 7.5 and is classified as HIGH severity.
CVE-2026-36783 is a HIGH severity vulnerability in Tenda O3 Wireless Router v1.0.0.5(4180). The vulnerability is caused by a stack overflow in the domain parameter of the fromNetToolGet function. This allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 7.5 and was published on [cve-org](https://www.cve.org/CVERecord?id=CVE-2026-36783).
A high-severity vulnerability was discovered in the Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180). The issue, tracked as CVE-2026-36779, is caused by multiple stack overflows in the fromVirtualSer function. Specifically, the vulnerability is triggered via the puVar2, puVar1, __s2, __s1_00, and puVar3 parameters. This vulnerability allows attackers to cause a Denial of Service [truncated]
A stack overflow vulnerability was discovered in the Tenda O3 Wireless Router v1.0.0.5(4180). The vulnerability exists in the username parameter of the R7WebsSecurityHandler function, allowing attackers to cause a Denial of Service (DoS) via a crafted HTTP request. This CVE has a CVSS score of 4.9 and a severity rating of MEDIUM.
A stack overflow vulnerability was discovered in the Tenda W3 Wireless Router v1.0.0.3(2204) in the param_1 parameter of the formSetCfm function. This issue allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability has a CVSS score of 6.5 and a severity of MEDIUM.
A stack overflow vulnerability was discovered in the Tenda W3 Wireless Router v1.0.0.3(2204) in the wl_radio parameter of the formwrlSSIDget function. This allows attackers to cause a Denial of Service (DoS) via a crafted input. The vulnerability has a CVSS score of 6.5 and a severity of MEDIUM.
A stack overflow vulnerability was discovered in the Tenda W3 Wireless Router v1.0.0.3(2204) in the wl_radio parameter of the formwrlSSIDset function. This issue allows attackers to cause a Denial of Service (DoS) via crafted input. The vulnerability has a CVSS score of 7.5 and is classified as HIGH severity.
CVE-2026-36770 is a HIGH severity vulnerability in Shenzhen Tenda Technology Co., Ltd Tenda US_W3V1.0BR v1.0.0.3. The vulnerability is caused by a stack overflow in the Go parameter of the ask_to_reboot function, which allows attackers to cause a Denial of Service (DoS) via a crafted input. The CVSS score for this vulnerability is 7.5.
