CVE-2026-11522 | Tenda W20E 15.11.0.6 /goform/setPortMirror formSetPortMirror portMirrorMirroredPorts stack-based overflow

A vulnerability has been found in Tenda W20E 15.11.0.6 and classified as critical. This vulnerability affects the function formSetPortMirror of the file /goform/setPortMirror. Performing a manipulation of the argument portMirrorMirroredPorts results in stack-based buffer overflow.

This vulnerability is identified as CVE-2026-11522. The attack can be initiated remotely. Additionally, an exploit exists.