CVE-2026-10192 Tenda W12 httpd set_local_time_0 stack-based overflow

A vulnerability was identified in Tenda W12 3.0.0.74763. The affected element is the function setlocaltime0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

CVE-2026-10192

A vulnerability was identified in Tenda W12 3.0.0.74763. The affected element is the function setlocaltime0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

CVE-2026-10192

The CVE concerns Tenda W12 (v3.0.0.7(4763)), in /bin/httpd, where the function set_local_time_0 can be manipulated via the Time argument to trigger a stack-based buffer overflow. This enables a remote, network-accessible exploit with publicly available code, leading to high impact on confidential...

Tenda W12 安全漏洞

Tenda W12 is a high-performance wireless access point from the Chinese company Tenda. Version 3.0.0.74763 of Tenda W12 contains a security vulnerability. This vulnerability stems from a parameter in the function setlocaltime0 in the file/bin/httpd, where the Time value causes a stack buffer...