HIGH 7.5

CVE-2026-36783: Tenda O3 Stack Overflow DoS Vulnerability – Patch Guidance

Tenda O3 Wireless Router firmware version 1.0.0.5(4180) contains a stack overflow flaw in a function that processes domain parameters from HTTP requests. An attacker can send a specially crafted network request to crash the router, causing it to become unavailable until reboot. No authentication is required to trigger this issue.

Source data · NVD / CISA · public domain

CVSS
3.1 · 7.5 HIGH · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weaknesses (CWE)
CWE-121
Affected products
0 configuration(s)
Published / Modified
2026-06-09 / 2026-06-17

NVD description (verbatim)

Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain a stack overflow in the domain parameter of the fromNetToolGet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

2 reference(s) · View on NVD →

SEC.co analysis · AI-assisted, reviewed against source

Technical summary

CVE-2026-36783 is a stack overflow vulnerability (CWE-121) in the fromNetToolGet function of the Tenda O3 v1.0.0.5(4180) firmware. The vulnerability exists in improper bounds checking on the 'domain' parameter when processing HTTP requests. An attacker can overflow the stack buffer by supplying an oversized domain value, leading to memory corruption and denial of service. The CVSS 3.1 score of 7.5 (HIGH) reflects network accessibility, low attack complexity, and no privileges required, with availability impact being the primary concern.

Business impact

Tenda O3 routers serve as critical network infrastructure in many small business and residential environments. A denial-of-service condition renders the router non-functional, disrupting internet connectivity and any services dependent on that router. This can affect productivity, remote work capabilities, and access to cloud-based business applications. Organizations relying on these devices for network access should prioritize remediation to avoid operational downtime.

Affected systems

Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router running firmware version 1.0.0.5(4180) is affected. The vulnerability does not appear to extend to other documented Tenda product lines based on available evidence, but users should verify their specific device model and firmware version before concluding they are unaffected.

Exploitability

This vulnerability is highly exploitable. It requires no user interaction, no authentication, and can be triggered over the network via a simple HTTP request. An attacker with network connectivity to the router can immediately cause a denial-of-service condition. The low attack complexity and minimal prerequisites make this a practical threat for any router exposed to untrusted networks.

Remediation

Firmware updates should be obtained directly from Tenda's official support channel. Users should verify the updated firmware version number against official Tenda documentation before installation. Firmware updates typically require administrative access to the router's web interface or physical access to recovery mechanisms. Test updates in a controlled environment if possible. Verify that the latest available firmware addresses this vulnerability before deploying to production.

Patch guidance

Check Tenda's official website or your router's firmware update mechanism for available patches. Document the current firmware version (found in device settings or web admin panel) and cross-reference it against Tenda's security advisories. Apply patches during a maintenance window to minimize business disruption. After patching, verify that the router's web interface is accessible and that network connectivity is restored. If no patch is immediately available from Tenda, consider temporary network segmentation or firewall rules to restrict access to the router's management interface.

Detection guidance

Monitor network traffic for unusual HTTP requests to your router containing excessively long domain parameter values. Examine router access logs (if available) for failed requests or errors correlating with service interruptions. Check for unexpected router reboots or availability gaps that may indicate exploitation attempts. Implement network segmentation to restrict which systems can reach the router's management interface. Consider deploying intrusion detection signatures that flag oversized HTTP requests targeting the fromNetToolGet endpoint, though specific signatures may need to be developed based on request patterns.

Why prioritize this

HIGH priority for all environments running the affected firmware version. The vulnerability requires no special conditions to exploit, affects a critical network device, and causes immediate service disruption. Organizations should treat this as urgent unless they have confirmed they are not running the affected firmware version or have already applied a confirmed patch.

Risk score, explained

The CVSS 3.1 score of 7.5 reflects a HIGH-severity vulnerability. The vector (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) indicates network-based attack vector, low attack complexity, no privileges needed, no user interaction required, and high availability impact. The primary risk driver is the ease of exploitation combined with immediate operational impact. The absence of confidentiality or integrity impact prevents a higher score, but the universal availability impact justifies the HIGH classification.

Frequently asked questions

Can this vulnerability steal my data or passwords?

No. This vulnerability only affects availability (causing the router to crash). It does not compromise confidentiality or integrity, so it cannot be used to intercept traffic or steal credentials directly. However, a router that is offline may disrupt other security protections that depend on it.

How do I know if my Tenda O3 is vulnerable?

Check your router's firmware version in the web admin interface or device settings menu. If it matches version 1.0.0.5(4180), your device is vulnerable. Compare against the latest version provided by Tenda's official support site. Devices running newer firmware versions should not be affected, but verify this against Tenda's security advisories.

What should I do if I cannot obtain a patch immediately?

Apply network segmentation to restrict administrative access to the router to trusted systems only. Disable remote management if it is enabled. Monitor the router for unexpected reboots. Subscribe to Tenda's security notifications to be alerted when a patch becomes available. Consider scheduling an update as soon as one is released by the vendor.

Is this vulnerability being actively exploited in the wild?

This vulnerability is not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog, which typically tracks vulnerabilities with confirmed public exploits. However, the simplicity and accessibility of the attack mean it could be exploited opportunistically. Organizations should not rely on exploitation rarity as justification for delay in patching.

This analysis is provided for informational purposes to support security decision-making. The information reflects publicly available details as of the publication date. Patch availability, vendor timelines, and affected device lists are subject to change. Organizations should verify affected status against official Tenda documentation and security advisories before implementing remediation. SEC.co does not provide warranty regarding the completeness or accuracy of third-party vendor information. Always test patches in a non-production environment before deployment. Consult official vendor documentation and your organization's change management procedures for specific guidance on your environment. Source: NVD (public-domain), retrieved 2026-07-19. Analysis generated by SEC.co (claude-haiku-4-5).