CVE-2026-36818
Deferred Deferred - Pending Action
BaseFortify

Publication date: 2026-06-09

Last updated on: 2026-06-09

Assigner: MITRE

Description
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-09
Last Modified
2026-06-09
Generated
2026-06-10
AI Q&A
2026-06-09
EPSS Evaluated
N/A
NVD
CVE-2026-36818
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
shenzhen_tenda_technology_co_ltd tenda_w20e 15.11.0.6
tenda w20e to 16.01.0.6 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-36818 is a buffer overflow vulnerability in the Tenda W20E router version 15.11.0.6. It occurs in the formAddWewifiWhiteUser function, specifically when processing the wewifiWhiteUserInfo HTTP parameter.

An attacker can exploit this vulnerability by sending a crafted HTTP request with an overly long wewifiWhiteUserInfo parameter. The function uses strncpy with an incorrect length calculation, which leads to a buffer overflow when the parameter exceeds expected limits.

This buffer overflow can cause the router process to crash or destabilize the device, resulting in a denial of service (DoS).

Impact Analysis

This vulnerability can impact you by causing a denial of service (DoS) on the affected Tenda W20E router. An attacker exploiting this flaw can crash the router process or destabilize the device, leading to loss of network connectivity or interruption of services relying on the router.

Detection Guidance

This vulnerability can be detected by monitoring for HTTP requests containing an overly long wewifiWhiteUserInfo parameter targeting the formAddWewifiWhiteUser function on the Tenda W20E router.

A practical detection method is to capture and analyze HTTP traffic to the router's web interface, looking for requests where the wewifiWhiteUserInfo parameter exceeds normal length (e.g., around 888 'a' characters followed by a newline).

  • Use a network packet capture tool like tcpdump or Wireshark to filter HTTP POST requests to the router's management interface.
  • Example tcpdump command to capture HTTP traffic on interface eth0: tcpdump -i eth0 -A 'tcp port 80 and (((ip dst <router_ip>) and (tcp[32:4] = 0x706f7374)) or ((ip src <router_ip>) and (tcp[32:4] = 0x706f7374)))'
  • Inspect captured HTTP POST data for the wewifiWhiteUserInfo parameter with suspiciously long values.
Mitigation Strategies

To mitigate this vulnerability immediately, avoid exposing the router's web management interface to untrusted networks.

Restrict access to the router's HTTP interface by using firewall rules or network segmentation.

Monitor for unusual HTTP requests with abnormally long wewifiWhiteUserInfo parameters and block or alert on such traffic.

Check for and apply any available firmware updates from Tenda that address this buffer overflow vulnerability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-36818. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart