CVE-2026-36794 - Vulnerability Details

- Stack Overflow Vulnerability in Tenda W3 Router Causing Denial of Service

Description

Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

Published: 2026-06-09

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Multiple stack overflows exist in the R7WebsSecurityHandler function of the Tenda W3 router, where the username and password parameters are not properly validated. A crafted HTTP request that supplies maliciously sized credentials can overflow the stack, causing the firmware to crash and the device to reboot or become unresponsive. This results in a denial of service for all users connected to the router and can disrupt network operations until the router is rebooted or replaced. The weakness is a classic buffer overflow.

Affected Systems

Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router, firmware version v1.0.0.3(2204). No other product variations or versions are listed. Users running this firmware are potentially impacted.

Risk and Exploitability

The CVSS score is 7.5, and the EPSS score is < 1%; the vulnerability is not listed in the CISA KEV catalog. Because the flaw can be triggered by a crafted HTTP request to a public management interface, it does not require elevated privileges or prior access. Attackers can invoke the stack overflow simply by sending a malformed username or password to the R7WebsSecurityHandler endpoint. While no active exploits are currently documented, the potential to render the router unusable presents a significant availability risk to any network relying on the device.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

No data.

Vendor Product Confidence Versions

Tenda

W3 Wireless Router

100%

Version	Status	Scheme	Platform
`1.0.0.3(2204)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the router firmware to the latest version that addresses the stack overflow issue.
If a firmware upgrade is not immediately available, disable or block remote access to the management interface (e.g., restrict HTTP/HTTPS to the local network or block the relevant ports).
Configure a firewall or access control list to limit traffic to the router from untrusted sources.
Monitor the device logs for repeated failed authentication attempts or crashes that may indicate exploitation attempts.

Generated by OpenCVE AI on June 10, 2026 at 23:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00254.

Exploitation poc

Automatable yes

Technical Impact partial

References

Link	Providers
https://github.com/xhh0124/SemVulLLM/tree/main/W3/R7WebsSecurityHandler

History

Wed, 10 Jun 2026 23:30:00 +0000

Type	Values Removed	Values Added
Title		Stack Overflow Vulnerability in Tenda W3 Router Causing Denial of Service

Wed, 10 Jun 2026 21:00:00 +0000

Type	Values Removed	Values Added
Title	Multiple Stack Overflows in Tenda W3 Router Causing Denial of Service
Weaknesses	CWE-119 CWE-122

Wed, 10 Jun 2026 18:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-121
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 10 Jun 2026 11:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tenda Tenda w3 Wireless Router
Vendors & Products		Tenda Tenda w3 Wireless Router

Tue, 09 Jun 2026 22:15:00 +0000

Type	Values Removed	Values Added
Title		Multiple Stack Overflows in Tenda W3 Router Causing Denial of Service
Weaknesses		CWE-119 CWE-122

Tue, 09 Jun 2026 18:45:00 +0000

Type	Values Removed	Values Added
Description		Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
References		https://github.com/xhh0124/SemVulLLM/tree/main/W3/R7WebsSecurityHandler

Subscriptions

Tenda W3 Wireless Router

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-06-09T00:00:00.000Z

Updated: 2026-06-10T17:55:14.830Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-36794

Vulnrichment

Updated: 2026-06-10T17:54:13.284Z

NVD

Status : Deferred

Published: 2026-06-09T19:17:44.917

Modified: 2026-06-10T18:16:45.660

Link: CVE-2026-36794

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-10T23:15:28Z

Weaknesses

CWE-121
Stack-based Buffer Overflow

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object