CVE-2026-36794

AI Predicted 7.5 Difficulty: Easy EPSS 0.25% · P49 Updated Jun 13, 2026

Possible ATT&CK Techniques 1AI

T1190 · Exploit Public-Facing Application

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-36794

AIGC Shenlong Model
NVD (National Vulnerability Database)

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2026-36794

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-36794

请登录查看更多情报信息。

Proof of Concept for CVE-2026-36794 (1)

🔗 SemVulLLM/W3/R7WebsSecurityHandler at main · xhh0124/SemVulLLM · GitHub

https://nvd.nist.gov/vuln/detail/CVE-2026-36794

Same Patch Batch · n/a · 2026-06-09 · 64 CVEs total

CVE-2026-11572	8.8 HIGH	degit <3.3.1命令注入漏洞
CVE-2026-11621	4.7 MEDIUM	Dcat-Admin User Setting upload editorMDUpload unrestricted upload
CVE-2026-11623	4.5 MEDIUM	tmux image.c image_free use after free
CVE-2025-52292		GPAC MP4Box v2.4栈溢出导致DoS漏洞
CVE-2026-36811		Tenda W15E v15.11.0.10拒绝服务漏洞
CVE-2026-30141		AnimatedGIF v2.2.0 LZW缓冲区溢出漏洞
CVE-2026-36726		bookcars v8.3任意文件删除漏洞
CVE-2026-36724		FastapiAdmin v2.2.0 DoS漏洞
CVE-2026-36818		腾达W20E v15.11.0.6缓冲区溢出导致拒绝服务
CVE-2026-36793		腾达W3路由器v1.0.0.3堆溢出导致DoS
CVE-2026-36778		腾达O3路由器栈溢出致拒绝服务漏洞
CVE-2026-36822		腾达W20E v15.11.0.6 DoS漏洞
CVE-2026-36783		Tenda O3路由器栈溢出致DoS
CVE-2026-36792		腾达W3路由器v1.0.0.3堆栈溢出致DoS
CVE-2026-36816		腾达W15E v15.11.0.10缓冲溢出致DoS
CVE-2026-36723		Bookcars v8.3任意文件重命名漏洞导致远程代码执行
CVE-2026-36725		FastapiAdmin v2.2.0 后台创建公告处存储型XSS漏洞
CVE-2026-36791		腾达O3v3 v1.0.0.5栈溢出导致DoS
CVE-2026-36801		腾达G0路由器IPMacBindRule溢出导致DoS
CVE-2025-55659		GPAC MP4Box v2.4空指针解引用致拒绝服务

Showing top 20 of 64 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2026-36794

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-36794

Possible ATT&CK Techniques 1AI

I. Basic Information for CVE-2026-36794

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-36794

III. Intelligence Information for CVE-2026-36794

Proof of Concept for CVE-2026-36794 (1)

Same Patch Batch · n/a · 2026-06-09 · 64 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-36794

Leave a comment