Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Tenda W20E Router Buffer Overflow Risk
CVE-2026-24115
Summary
A bug in the Tenda W20E router's firmware can cause the device to crash or become unstable if it receives a specific type of network packet. This could lead to a loss of internet access or other connectivity issues. Users should update their router's firmware to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| tenda | w20e_firmware | 15.11.0.6 | – |
Original title
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the sizes of `gstup` and `gstdwn` before concatenating them into `gstruleQos` may lead to buffer overflow.
Original description
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the sizes of `gstup` and `gstdwn` before concatenating them into `gstruleQos` may lead to buffer overflow.
nvd CVSS3.1
9.8
Vulnerability type
CWE-120
Classic Buffer Overflow
- https://github.com/akuma-QAQ/CVEreport/tree/main/D-link/CVE-2026-24115 Exploit Third Party Advisory
- https://www.tenda.com.cn/material/show/2707 Product
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026