CVE-2026-36807
The CVE relates to Shenzhen Tenda Technology Co., Ltd. Tenda W15E (firmware v15.11.0.10). An input validation flaw in the webAuthUserPwd parameter of the formAddWebAuthUser function allows a crafted HTTP request to trigger a buffer overflow, resulting in Denial of Service (DoS). According to the ...