CVE-2026-36784: Shenzhen Tenda Technology Co
Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain a stack overflow in the ip parameter of the fromNetToolGet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a HTTP request.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
HarborGuard Analysis
Synopsis
A stack-based buffer overflow in the Tenda O3 Wireless Router (firmware v1.0.0.5(4180)) allows a remote attacker to crash the device by sending a crafted HTTP request with an oversized value in the ip parameter of the fromNetToolGet function. No authentication is required and no user interaction is needed, making the device reachable by any attacker who can send it an HTTP request. Successful exploitation causes a Denial of Service, taking the router offline until it is manually restarted. No fix version has been published; HarborGuard tracks the upstream advisory and will make a patched-image rebuild available as soon as one is released.
HarborGuard Coverage
Detection for CVE-2026-36784 is available across every HarborGuard environment. Ingestion from upstream vulnerability feeds occurs within minutes of publication, and the CVE is matched against all customer images in connected registries and CI/CD pipelines, including custom-built images that bundle this firmware or its components.
AvailableHarborGuard is capable of scoring this CVE at 7.5 HIGH (CVSS v3.1) and weighting it against each environment's compliance policy to determine urgency. Triage routing routes findings to the appropriate team inbox within each customer organization based on configured ownership rules.
AvailableBecause no fix version has been published upstream, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment an upstream fix is released. In the meantime, customers can apply compensating controls through HarborGuard's network-policy isolation recommendations to restrict HTTP access to affected devices.
Pending upstreamExploit Conditions
- Network reachabilityRequired
The attacker must reach the router's HTTP service over the network; no local or physical access is needed.
- AuthenticationNot required
No credentials are needed; the vulnerable fromNetToolGet endpoint is accessible without logging in.
- Victim interactionNot required
The attacker sends a single crafted HTTP request with no user action required on the target device.
- Attack complexityDetail
Exploitation is reliable and condition-free; no race conditions or special environmental factors are required to trigger the overflow.
Blast Radius
- The router process crashes, dropping all network traffic routed through the device until it is manually restarted.
- Any connected devices that depend on the router for internet or LAN connectivity lose network access for the duration of the outage.
- Repeated exploitation can maintain a persistent denial-of-service state, preventing administrators from regaining connectivity through the affected device.
How HarborGuard Handles This
Available on HarborGuard: detection for this CVE is matched against customer images within minutes of publication. Because no upstream fix exists yet, HarborGuard monitors the advisory on every ingest cycle and will trigger a patched-image rebuild automatically once a fix version is published. While awaiting a vendor patch, customers can use HarborGuard's network-policy isolation capability to generate a compensating-control recommendation that restricts inbound HTTP access to the router's management interface, limiting the attack surface to trusted source addresses only. For customers with auto-remediation enabled, the patched rebuild, regression test run, and PR against affected workloads will be initiated without manual intervention the moment an upstream fix becomes available.
- n/a / n/an/a
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H