CVE-2026-36820 | Tenda W20E 15.11.0.6 HTTP formAddWebAuthWhiteUser webAuthWhiteUserInfo buffer overflow

A vulnerability labeled as critical has been found in Tenda W20E 15.11.0.6. The affected element is the function formAddWebAuthWhiteUser of the component HTTP Handler. Such manipulation of the argument webAuthWhiteUserInfo leads to buffer overflow.

This vulnerability is listed as CVE-2026-36820. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More