8 matches found
CVE-2026-24108
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
CVE-2026-24108
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
CVE-2026-24113
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
CVE-2026-24113
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
CVE-2026-24113
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
EUVD-2026-9181
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...
CVE-2026-24108
CVE-2026-24108 affects Tenda W20E router, version 4.0br_V15.11.0.6. The issue is a buffer overflow in getMibPrefix caused by concatenating the user-controlled nptr value with sprintf without proper size validation. This could allow remote network access exploitation with high impact (CVSS 3.1: CV...
CVE-2026-24113
CVE-2026-24113 affects Tenda W20E V4.0br_V15.11.0.6. The issue arises when the nptr value is passed to getMibPrefix and concatenated with sprintf without proper size validation, enabling a buffer overflow. The vulnerability is described as a critical, network-accessible issue (CVSS 3.1: AV:N/AC:L...