Stack Overflow Vulnerability in Tenda W3 Wireless Router by Shenzhen Tenda Technology
CVE-2026-36794

7.5HIGH

Key Information:

Vendor: Shenzhen Tenda Technology Co., Ltd
Status: Tenda W3 Wireless Router
Vendor: CVE Published:; 9 June 2026

🔔 Create Shenzhen Tenda Technology Co., Ltd Vulnerability Alert

What is CVE-2026-36794?

The Tenda W3 Wireless Router, version 1.0.0.3(2204), is susceptible to multiple stack overflow vulnerabilities in the R7WebsSecurityHandler function. Attackers can exploit these weaknesses through maliciously crafted HTTP requests, potentially resulting in a Denial of Service (DoS) condition, thereby disrupting normal functionality and access to the device.

References

https://github.com/xhh0124/SemVulLLM/tree/main/W3/R7WebsS...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2026
Vulnerability Reserved
Apr 6, 2026

CVE-2026-36794 Data

JSON