PT-2026-22597 · Tenda · Tenda W20E
Akuma-Qaq
·
Published
2026-03-02
·
Updated
2026-03-07
·
CVE-2026-24113
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Tenda W20E version 4.0br V15.11.0.6
Description
An issue exists in Tenda W20E version 4.0br V15.11.0.6 that could allow attackers to cause a buffer overflow. This is possible by controlling the value of
nptr, which is then passed into the getMibPrefix function. The sprintf function is used to concatenate this value without proper size validation.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda W20E