PT-2026-22597 · Tenda · Tenda W20E

Akuma-Qaq

Publicado

2026-03-02

Atualizado

2026-03-07

CVE-2026-24113

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Tenda W20E version 4.0br V15.11.0.6

Description An issue exists in Tenda W20E version 4.0br V15.11.0.6 that could allow attackers to cause a buffer overflow. This is possible by controlling the value of nptr, which is then passed into the getMibPrefix function. The sprintf function is used to concatenate this value without proper size validation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-120

Identificadores relacionados

BDU:2026-02502

CVE-2026-24113

Produtos afetados

Tenda W20E

PT-2026-22597 · Tenda · Tenda W20E

CVE-2026-24113

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 11