Stack Overflow Vulnerability in Tenda W3 Wireless Router by Shenzhen Tenda Technology Co., Ltd
CVE-2026-36772

6.5MEDIUM

Key Information:

Vendor: Shenzhen Tenda Technology Co., Ltd
Status: Tenda W3 Wireless Router
Vendor: CVE Published:; 9 June 2026

🔔 Create Shenzhen Tenda Technology Co., Ltd Vulnerability Alert

What is CVE-2026-36772?

The Tenda W3 Wireless Router (v1.0.0.3(2204)) has been identified with a stack overflow vulnerability within the wl_radio parameter of the formwrlSSIDget function. This weakness allows a malicious actor to execute a Denial of Service (DoS) attack by sending specially crafted input, potentially disrupting the availability of the router's services. Users are advised to remain vigilant and apply any available security updates to mitigate the risk associated with this vulnerability.

References

https://github.com/xhh0124/SemVulLLM/tree/main/W3/formwrl...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2026
Vulnerability Reserved
Apr 6, 2026

CVE-2026-36772 Data

JSON