CVE-2026-36800: Shenzhen Tenda Technology Co
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindIndex parameter of the formIPMacBindDel function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
HarborGuard Analysis
Synopsis
A buffer overflow vulnerability affects the Tenda G0 router (firmware v15.11.0.5), specifically in the formIPMacBindDel function when processing the IPMacBindIndex parameter. The flaw is reachable over the network without any authentication or user interaction, meaning any attacker who can send HTTP requests to the device can trigger it. Successful exploitation crashes the affected service, causing a denial of service. No fix version has been published yet; HarborGuard tracks the advisory and will surface a patched rebuild the moment upstream ships a fix.
HarborGuard Coverage
Detection for CVE-2026-36800 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against customer images, including custom-built firmware or application images derived from affected Tenda G0 components. Any image in a connected registry or CI pipeline that carries the vulnerable package is flagged automatically.
AvailableTriage capability is available immediately on detection: the CVE is scored at CVSS 7.5 (HIGH) using the v3.1 vector, and HarborGuard applies per-environment compliance policy weighting to determine urgency and route the finding to the appropriate team inbox within each customer organization.
AvailableNo fix version has been published upstream for this CVE. HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a fix is released. For customers with auto-remediation enabled, the rebuild, regression run, and PR against affected workloads will be triggered without manual intervention once an upstream patch is confirmed.
Pending upstreamExploit Conditions
- Network reachabilityRequired
The vulnerable function is exposed over the network via HTTP, so an attacker must be able to send requests to the device's web interface to trigger the overflow.
- AuthenticationNot required
No credentials are needed; the vulnerable endpoint can be reached by any unauthenticated HTTP request.
- Victim interactionNot required
The attack is fully remote and passive on the victim side; no user action such as clicking a link or opening a file is required.
- Attack complexityDetail
Exploitation is straightforward and condition-free; the attacker simply sends a crafted HTTP request with a malformed IPMacBindIndex value, with no race conditions or special environmental factors needed.
Blast Radius
- Crashes the formIPMacBindDel service process, taking down the affected router function until the device is restarted.
- Disrupts network connectivity for all clients relying on the device, as the DoS can render the router unresponsive.
How HarborGuard Handles This
Available on HarborGuard: this CVE is monitored continuously because no upstream fix exists at this time. Customers running images that include affected Tenda G0 firmware components will see the finding surfaced in their scan results with a CVSS 7.5 HIGH severity label. As compensating controls, customers can apply network-policy isolation to restrict HTTP management-plane access to trusted source IPs only, and egress filtering can limit the exposure surface while a patch is pending. HarborGuard re-checks the advisory on every ingest cycle; once Tenda publishes a fix, a patched-image rebuild becomes available automatically, and customers with auto-remediation enabled will receive a rebuilt image, a regression-test run, and a PR opened against affected workloads without any manual steps required.
- n/a / n/an/a
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H