These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-51846 is a stack buffer overflow vulnerability in the Tenda AC7 router, specifically in the wanSpeed parameter of the /goform/AdvSetMacMtuWan route. This vulnerability, present in version 15.03.06.44, could allow for remote arbitrary code execution. The CVE was published on June 19, 2026. Given the potential for remote code execution, defenders should prioritize patching or mitigating this vulner [truncated]
CVE-2026-51845 is a stack buffer overflow vulnerability in Tenda AC7 v15.03.06.44. The vulnerability exists in the /goform/AdvSetMacMtuWan interface via the mac parameter. Defenders should assess exposure and prioritize patching due to potential remote exploitation. The CVE was published on 2026-06-19 and has not been assessed for CVSS score or severity. Limited information is available, emphasizing the n [truncated]
CVE-2026-51844 is a stack buffer overflow vulnerability in Tenda AC7 v15.03.06.44. The vulnerability exists in the /goform/AdvSetMacMtuWan interface via the cloneType parameter. This issue may allow attackers to execute arbitrary code. Affected users should review and apply patches from the vendor. The CVE was published on 2026-06-19 and has not been modified since then. The vulnerability's severity and s [truncated]
CVE-2026-51843 is a stack buffer overflow vulnerability in Tenda AC7 v15.03.06.44. The vulnerability exists in the /goform/AdvSetMacMtuWan interface via the wanMTU parameter. This issue may allow attackers to execute arbitrary code. Affected users should review and apply patches from the vendor. The CVE was published on 2026-06-19 and has not been modified since then. The vulnerability's severity and impa [truncated]
CVE-2026-38065 is a command injection vulnerability in Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_ims_on_with_apn via the ims_apn parameter. This CVE was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-38065) and last modified on [cveModifiedAt](https://nvd.nist.gov/vuln/detail/CVE-2026-38065).
CVE-2026-38064 is a command injection vulnerability in the Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_dial_call via the dialNumber parameter. This CVE was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-38064) and last modified on [cveModifiedAt](https://nvd.nist.gov/vuln/detail/CVE-2026-38064).
CVE-2026-38063 is a command injection vulnerability in the Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_radio_on_with_ia_apn via the ia parameter. This CVE was published on [cvePublishedAt]2026-06-15T20:16:26.687Z[/cvePublishedAt] and modified on [cveModifiedAt]2026-06-15T21:05:18.653Z[/cveModifiedAt].
CVE-2026-38062 is a command injection vulnerability in the Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_set_rat_mode via the ratMode parameter. This CVE was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-38062) and last modified on [cveModifiedAt](https://nvd.nist.gov/vuln/detail/CVE-2026-38062).
CVE-2026-38061 is a command injection vulnerability in the Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_set_volume via the volume parameter. This CVE was published on [cvePublishedAt]2026-06-15T20:16:26.483Z[/cvePublishedAt] and modified on [cveModifiedAt]2026-06-15T21:05:18.653Z[/cveModifiedAt].
CVE-2026-38060 is a command injection vulnerability in the Tenda 5G03 V05.03.02.04 (Version 1.0). The vulnerability exists in the function action_unlock_sim and is triggered via the pin parameter. This CVE was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-38060) and last modified on [cveModifiedAt](https://nvd.nist.gov/vuln/detail/CVE-2026-38060).
A high-severity vulnerability, CVE-2026-11557, has been identified in Tenda F451. The vulnerability affects the fromNatlimit function in the /goform/Natlimit file of the Web Management Interface. A remote attacker can exploit this vulnerability by manipulating the 'page' argument, leading to a stack-based buffer overflow. The CVSS score for this vulnerability is 7.4, indicating a high level of severity. T [truncated]
CVE-2026-11556 is a HIGH severity vulnerability with a CVSS score of 7.4. The vulnerability affects Tenda F451 versions 1.0.0.7 and 1.0.0.9, specifically in the formWriteFacMac function of the /goform/WriteFacMac file, allowing for os command injection via manipulation of the mac argument. This vulnerability can be exploited remotely.
CVE-2026-11553 is a HIGH severity vulnerability (CVSS Score: 7.4) affecting Tenda HG7HG9 and HG10 300001138_en_xpon devices. The vulnerability is caused by a stack-based buffer overflow in the `formPPPEdit` function of the `/boaform/formPPPEdit` file, which can be exploited remotely by manipulating the `encodename` argument. The exploit has been made public and could be used.
A high-severity vulnerability, CVE-2026-11528, was found in Tenda AC18 15.03.05.05. The vulnerability affects the function sub_45304 of the file /goform/getRebootStatus in the Web Management Interface. An attacker can exploit this vulnerability remotely, resulting in a stack-based buffer overflow. The CVSS score for this vulnerability is 7.4, indicating a high level of severity. The vulnerability was publ [truncated]
A vulnerability has been found in Tenda W20E 15.11.0.6. The function modifyWifiFilterRules of the file /goform/modifyWifiFilterRules of the component Web Management Interface is impacted. The manipulation of the argument wifiFilterListRemark leads to a stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
A stack-based buffer overflow vulnerability has been discovered in Tenda W20E version 15.11.0.6. The issue affects the `formPortalAuth` function located in the `/goform/PortalAuth` file of the Web Management Interface. An attacker can exploit this vulnerability remotely by manipulating the `gotoUrl` argument, leading to a potential stack-based buffer overflow. The Common Vulnerability Scoring System (CVSS [truncated]
A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSetPortMirror of the file /goform/setPortMirror. Performing a manipulation of the argument portMirrorMirroredPorts results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.
A vulnerability was detected in Tenda CX12L 16.03.53.12. The impacted element is the function setSchedWifi of the file /goform/openSchedWifi of the component Wi-Fi Schedule Configuration Endpoint. Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used.
CVE-2026-11503 is a HIGH severity vulnerability in Tenda CX12L 16.03.53.12. The Wi-Fi Configuration Endpoint is affected by a stack-based buffer overflow via ssid argument manipulation in the form_fast_setting_wifi_set function of /goform/fast_setting_wifi_set. Remote attackers can exploit this vulnerability. The exploit has been publicly disclosed.
A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. Affected by this issue is the function asp_voip_OtherSet of the file /boaform/voip_other_set of the component Web Management Interface. Performing a manipulation of the argument funckey_transfer results in stack-based buffer overflow. The attack is possible to be carried out remotely.
A weakness was identified in Tenda AC15 15.03.05.19, specifically in an unknown function of the file /etc_ro/smb.conf of the Samba component. This issue allows for weak password requirements due to manipulation within the local network. The attack complexity is high and exploitability is difficult. The exploit has been made public and could be used for attacks. The CVSS score is 1.3, indicating a low severity.
A stack-based buffer overflow vulnerability exists in the Tenda W12 router firmware version 3.0.0.7(4763). The vulnerability is located in the `cgiWifiMacFilterSet` function within the `/bin/httpd` binary. An attacker can trigger the overflow by manipulating the `wifiMacFilterSet.macList.mac` argument through remote network access. The vulnerability has been publicly disclosed with available exploit mater [truncated]
A medium-severity denial-of-service vulnerability affects the Tenda W12 wireless access point firmware version 3.0.0.7(4763). The flaw resides in the cgiSysWebTimeoutSet function within the /bin/httpd binary of the device's Web Management Interface. Remote attackers with low privileges can trigger a denial of service by manipulating the web_over_time parameter. The vulnerability has been publicly disclose [truncated]
A stack-based buffer overflow vulnerability exists in the Tenda W12 router firmware version 3.0.0.7(4763). The vulnerability is located in the `cgiSysTimeInfoSet` function within the `/bin/httpd` binary. Remote attackers can trigger the overflow by manipulating the `sec` parameter. The exploit has been publicly disclosed, increasing the likelihood of active exploitation. The vendor attribution to Tenda is [truncated]
A stack-based buffer overflow vulnerability exists in the Tenda W12 wireless access point firmware version 3.0.0.7(4763). The flaw resides in the `cgistaKickOff` function within the `/bin/httpd` binary, where improper handling of the `staMac` parameter allows remote attackers to overflow the stack buffer. The vulnerability is remotely exploitable and public exploit material has been published, increasing [truncated]
A stack-based buffer overflow vulnerability exists in the Tenda F1202 router firmware version 1.2.0.20(408). The vulnerability is located in the `fromPptpUserAdd` function within the `/goform/PptpUserAdd` endpoint, where improper handling of the `opttype` parameter allows remote attackers to trigger memory corruption. The CVSS 4.0 vector indicates network attack vector with low attack complexity, low priv [truncated]
A stack-based buffer overflow vulnerability exists in the Tenda F1202 wireless router firmware version 1.2.0.20(408). The vulnerability is located in the `formWrlExtraSet` function within the `/goform/WrlExtraSet` endpoint, where improper handling of the `delno` parameter allows remote attackers to trigger memory corruption. The attack vector is network-accessible with low attack complexity and requires l [truncated]
A stack-based buffer overflow vulnerability exists in the Tenda F1202 router firmware version 1.2.0.20(408). The vulnerability is located in the `fromPPTPUserSetting` function within the `/goform/PPTPUserSetting` endpoint. Remote attackers can exploit this by manipulating the `delno` argument to trigger memory corruption. The CVSS 4.0 score of 7.4 (HIGH) reflects network attack vector, low attack complexi [truncated]
A buffer overflow vulnerability in the Tenda F456 router firmware version 1.0.0.5 allows remote attackers to execute arbitrary code via the `page` parameter in the `/goform/L7Im` endpoint's `frmL7ImForm` function. The vulnerability has a CVSS 4.0 score of 7.4 (HIGH severity) and public exploit disclosure increases immediate risk. The affected product is a consumer-grade wireless router, and successful exp [truncated]
CVE-2026-8138 is a high-severity vulnerability in Tenda CX12L firmware 16.03.53.12. The issue is a remote stack-based buffer overflow in PPTP server configuration handling, and the public disclosure notes that exploit code has been made available.
CVE-2021-31755 is a Tenda AC11 Router stack buffer overflow vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2021-11-03, with a remediation due date of 2021-11-17. The supplied authoritative sources identify the issue and the need to apply vendor-provided updates, but do not provide additional technical detail in this corpus.
CVE-2020-10987 is a remote code execution vulnerability affecting the Tenda AC1900 Router AC15 Model. CISA lists it in the Known Exploited Vulnerabilities catalog, which means it is known to be exploited in the wild. For defenders, this makes the issue especially important for any environment using this router model, particularly if the device is internet-facing or difficult to monitor.
CVE-2018-14558 is a command injection vulnerability affecting Tenda AC7, AC9, and AC10 routers. CISA lists the issue in its Known Exploited Vulnerabilities catalog, which means it has been identified as actively exploited or otherwise confirmed as a real-world attack risk. The supplied guidance is straightforward: apply updates per vendor instructions and treat affected devices as a security priority.