CVE-2026-13519

EUVD-2026-40016
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
Common Weakness Enumeration
References
https://github.com/cve-a/Yuanji-Wanshu/issues/1
https://vuldb.com/cve/CVE-2026-13519
https://vuldb.com/submit/838993
https://vuldb.com/vuln/374527
https://vuldb.com/vuln/374527/cti
https://www.tenda.com.cn/