Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
Tenda i12 Router: Malicious Input Can Crash the Device
CVE-2026-5609
Summary
A security flaw in the parameter handling of Tenda i12 routers can be exploited by an attacker to crash the device remotely. This can happen if the router receives specially crafted input. To protect your network, update the router to the latest available firmware or consider replacing it with a more secure model.
Original title
A flaw has been found in Tenda i12 1.0.0.11(3862). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulatio...
Original description
A flaw has been found in Tenda i12 1.0.0.11(3862). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wl_radio causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-121
Stack-based Buffer Overflow
Published: 6 Apr 2026 · Updated: 6 Apr 2026 · First seen: 6 Apr 2026