CVE-2026-36800

Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindIndex parameter of the formIPMacBindDel function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

PT-2026-48207

Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

PT-2026-47934

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A heap-based buffer overflow allows an unauthorized attacker to execute arbitrary code locally and remotely, which can affect the system. A heap-based buffer overflow occurs when an...

CVE-2026-36810

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the gotoUrl parameter of the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

PT-2026-48194

Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the SafeMacFilter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

Adobe USD-Fileformat-plugins Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe USD-Fileformat-plugins. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within t...

CVE-2026-36822

CVE-2026-36822 affects Shenzhen Tenda Technology Co., Ltd. Tenda W20E v15.11.0.6. The issue is a buffer overflow in the macAddr parameter of the formDelStaState function, enabling a Denial of Service via a crafted HTTP request. No exploitation specifics or mitigations are provided in the document...

PT-2026-48211

Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the macAddr parameter of the formDelStaState function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

CVE-2026-36813

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

CVE-2026-36807

The CVE relates to Shenzhen Tenda Technology Co., Ltd. Tenda W15E (firmware v15.11.0.10). An input validation flaw in the webAuthUserPwd parameter of the formAddWebAuthUser function allows a crafted HTTP request to trigger a buffer overflow, resulting in Denial of Service (DoS). According to the ...

PT-2026-48206

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

CVE-2026-36817

CVE-2026-36817 affects Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10. The issue is a buffer overflow in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function, which can be triggered by a crafted HTTP request to cause a Denial of Service (DoS). The CVSS v3.1 vector...

CVE-2026-36801

CVE-2026-36801 concerns Shenzhen Tenda Technology Co., Ltd. Tenda G0 firmware v15.11.0.5, where a buffer overflow in the IPMacBindRule parameter of the formIPMacBindAdd function can be triggered by a crafted HTTP request, leading to a Denial of Service. Affected component/trigger: the vulnerable ...

CVE-2026-36811

CVE-2026-36811 affects Shenzhen Tenda Technology Co., Ltd. — Tenda W15E v15.11.0.10. The issue is a buffer overflow in the picName parameter of the formDelwebAuthPic function, which leads to a Denial of Service (DoS) via a crafted HTTP request. Exploitation details are not provided in the availab...

CVE-2026-36811

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picName parameter of the formDelwebAuthPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

CVE-2026-36816

Affected product: Shenzhen Tenda Technology Co., Ltd Tenda W15E (firmware v15.11.0.10). Vulnerability: buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. Impact: enables an attacker to cause a Denial of Service (DoS) via a crafted HTTP request. Root cause...

CVE-2026-36819

The CVE covers Shenzhen Tenda Technology Co., Ltd Tenda W20E devices (v15.11.0.6). A buffer overflow in the bindMACAddr parameter of the fromSetDhcpRules function is reported, enabling a DoS through a crafted HTTP request. Affected component: W20E firmware; underlying issue: improper input handli...

CVE-2026-36810

CVE-2026-36810 concerns Shenzhen Tenda Technology Co., Ltd. Tenda W15E (v15.11.0.10). A buffer overflow is reported in the gotoUrl parameter of the formPortalAuth function, enabling a Denial of Service (DoS) via a crafted HTTP request. The available documents consistently describe this vulnerabil...

PT-2026-48201

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the gotoUrl parameter of the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

ROS-20260609-73-0004

The vulnerability of the RDP client FreeRDP is related to the escape of operations beyond the buffer in memory due to incorrect validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...