Description
A flaw has been found in Tenda i12 1.0.0.11(3862). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wl_radio causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used.
Published: 2026-04-06
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

A stack‑based buffer overflow exists in the Tenda i12 firmware 1.0.0.11(3862) within the formwrlSSIDset function, which is accessed through the /goform/wifiSSIDset web interface. The overflow is triggered by manipulating the wl_radio argument, and the vulnerability falls under CWE‑119 and CWE‑121. If successfully exploited, it could allow an attacker to execute arbitrary code on the device, thereby compromising the confidentiality, integrity, and availability of the network and the connected clients.

Affected Systems

The affected device is the Tenda i12 router running firmware version 1.0.0.11(3862). No other product models or firmware builds are explicitly listed as vulnerable in the available data.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity. EPSS data is not available, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, the attack is likely to occur remotely via the router’s web interface. An exploit has already been published, which increases the likelihood of real‑world exploitation.

Generated by OpenCVE AI on April 6, 2026 at 04:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update released by Tenda that removes the vulnerable formwrlSSIDset functionality.
  • If no update is available, temporarily disable remote web management or restrict it to trusted networks to prevent exploitation.
  • Monitor network traffic for attempts to reach the /goform/wifiSSIDset endpoint and block anomalous requests using the router’s firewall or an external gateway.
  • Regularly check Tenda’s official website or support channels for security advisories or patches addressing this issue.

Generated by OpenCVE AI on April 6, 2026 at 04:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 07 Apr 2026 00:00:00 +0000

Type Values Removed Values Added
First Time appeared Tenda i12
Vendors & Products Tenda i12

Mon, 06 Apr 2026 20:00:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 06 Apr 2026 01:45:00 +0000

Type Values Removed Values Added
Description A flaw has been found in Tenda i12 1.0.0.11(3862). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wl_radio causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used.
Title Tenda i12 Parameter wifiSSIDset formwrlSSIDset stack-based overflow
First Time appeared Tenda
Tenda i12 Firmware
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:o:tenda:i12_firmware:*:*:*:*:*:*:*:*
Vendors & Products Tenda
Tenda i12 Firmware
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Tenda I12 I12 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-04-06T18:21:17.706Z

Reserved: 2026-04-05T15:24:57.517Z

Link: CVE-2026-5609

cve-icon Vulnrichment

Updated: 2026-04-06T18:21:11.786Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-06T02:16:00.670

Modified: 2026-04-07T13:20:35.010

Link: CVE-2026-5609

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-06T21:47:37Z

Weaknesses