Perceptive Security
SOC/SIEM Consultancy
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function set_local_time_0 of the file /bin/httpd. Such manipulation of th…
Published:
30 mei 2026 om 22:00:00
Alert date:
31 mei 2026 om 18:00:34
Source:
nvd.nist.gov
Mobile & IoT, Network Infrastructure
A stack-based buffer overflow vulnerability was identified in Tenda W12 router firmware version 3.0.0.7(4763). The vulnerability affects the set_local_time_0 function in the /bin/httpd file, where manipulation of the Time argument leads to buffer overflow. The attack can be launched remotely, making it particularly dangerous. A public exploit is available, significantly increasing the risk of exploitation. This vulnerability poses a high security risk for affected Tenda W12 devices.
Technical details
Mitigation steps:
Affected products:
Tenda W12
Related links:
https://nvd.nist.gov/vuln/detail/CVE-2026-10192
http://cdn2.v50to.cc/set_local_time_0_overflow.zip
https://vuldb.com/cve/CVE-2026-10192
https://vuldb.com/submit/820024
https://vuldb.com/vuln/367473
https://vuldb.com/vuln/367473/cti
https://www.tenda.com.cn/
Related CVE's:
Related threat actors:
IOC's:
This article was created with the assistance of AI technology by Perceptive.