https://feed.craftedsignal.io/tags/cve-2026-5036/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioSun, 29 Mar 2026 08:15:56 +0000https://feed.craftedsignal.io/briefs/2026-03-tenda-4g06-bo/Sun, 29 Mar 2026 08:15:56 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-tenda-4g06-bo/A stack-based buffer overflow vulnerability (CVE-2026-5036) exists in the fromDhcpListClient function of the Tenda 4G06 router (version 04.06.01.29), potentially allowing remote attackers to execute arbitrary code by manipulating the 'page' argument in the /goform/DhcpListClient endpoint.A stack-based buffer overflow vulnerability, identified as CVE-2026-5036, affects the Tenda 4G06 router, specifically version 04.06.01.29. The vulnerability resides in the fromDhcpListClient function within the /goform/DhcpListClient endpoint. A remote attacker can exploit this by crafting a malicious request that manipulates the page argument, leading to a buffer overflow on the stack. This could allow the attacker to potentially execute arbitrary code on the device. Given the…

]]>criticaladvisorycve-2026-5036buffer-overflowroutertenda