CVE-2026-13515 – Tenda JD12L SetPptpServerCfg formSetPPTPServer stack-based overflow

CVE ID :CVE-2026-13515

Published : June 28, 2026, 11:30 p.m. | 15 minutes ago

Description :A security vulnerability has been detected in Tenda JD12L 16.03.53.23. Impacted is the function formSetPPTPServer of the file /goform/SetPptpServerCfg. Such manipulation of the argument startIp leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…