CVE-2026-36803
Deferred Deferred - Pending Action
BaseFortify

Publication date: 2026-06-09

Last updated on: 2026-06-09

Assigner: MITRE

Description
Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the qossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-09
Last Modified
2026-06-09
Generated
2026-06-10
AI Q&A
2026-06-09
EPSS Evaluated
N/A
NVD
CVE-2026-36803
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
tenda tenda_pw201a 1.0.5
tenda pw201a 1.0.5
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-36803 is a buffer overflow vulnerability found in the Tenda PW201A v1.0.5 device, specifically in the qossetting function. It occurs when an attacker sends a crafted HTTP request with a very long "page" parameter to a specific CGI endpoint. This parameter is processed unsafely using a sprintf command, which leads to a buffer overflow.

This buffer overflow can cause the device's process to crash or become unstable.

Impact Analysis

The primary impact of this vulnerability is a Denial of Service (DoS). An attacker exploiting this flaw can cause the affected device to crash or become unstable, potentially disrupting network connectivity or device availability.

Detection Guidance

This vulnerability can be detected by sending a crafted HTTP request to the vulnerable device's CGI endpoint that triggers the buffer overflow in the qossetting function. Specifically, sending a request with a very long "page" parameter (e.g., page=a repeated 888 times or more) to the endpoint associated with the function 0x42e1c4 in the TENDA_HTTPD service can reveal the vulnerability if the device crashes or becomes unstable.

A possible detection command using curl could be:

  • curl -v "http://<device-ip>/cgi-bin/qossetting?page=$(python3 -c 'print("a"*888)')"

If the device crashes, becomes unresponsive, or the HTTP service stops responding after this request, it indicates the presence of the vulnerability.

Mitigation Strategies

Immediate mitigation steps include limiting access to the vulnerable device's HTTP management interface to trusted networks only, such as by using firewall rules or network segmentation.

Additionally, monitoring for unusual HTTP requests with abnormally long parameters targeting the qossetting function can help detect exploitation attempts.

Since the vulnerability causes a Denial of Service via a crafted HTTP request, blocking or filtering such malformed requests at the network perimeter or using an intrusion prevention system can reduce risk.

Finally, check for firmware updates or patches from Shenzhen Tenda Technology Co., Ltd and apply them once available to fully remediate the vulnerability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-36803. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart