CVE-2026-51605: n/a
A stack-based buffer overflow vulnerability exists in the RTSP service of Tenda CP3 V3.0 firmware version 31.1.9.991. This flaw allows an unauthenticated remote attacker to cause a denial of service by sending a specially crafted TEARDOWN request. No patch or official remediation information is currently available.
AI Analysis
Technical Summary
CVE-2026-51605 describes a stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 running firmware version 31.1.9.991. The vulnerability can be triggered remotely without authentication by sending a crafted TEARDOWN request, resulting in a denial of service condition. There is no CVSS score or vendor advisory indicating remediation status or patch availability.
Potential Impact
An unauthenticated remote attacker can exploit this vulnerability to cause a denial of service on affected devices by triggering a stack-based buffer overflow via a crafted TEARDOWN request to the RTSP service. This could disrupt device availability but does not indicate code execution or data compromise based on the provided data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a patch is available, consider limiting exposure of the RTSP service to untrusted networks to reduce risk.
CVE-2026-51605: n/a
Description
A stack-based buffer overflow vulnerability exists in the RTSP service of Tenda CP3 V3.0 firmware version 31.1.9.991. This flaw allows an unauthenticated remote attacker to cause a denial of service by sending a specially crafted TEARDOWN request. No patch or official remediation information is currently available.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-51605 describes a stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 running firmware version 31.1.9.991. The vulnerability can be triggered remotely without authentication by sending a crafted TEARDOWN request, resulting in a denial of service condition. There is no CVSS score or vendor advisory indicating remediation status or patch availability.
Potential Impact
An unauthenticated remote attacker can exploit this vulnerability to cause a denial of service on affected devices by triggering a stack-based buffer overflow via a crafted TEARDOWN request to the RTSP service. This could disrupt device availability but does not indicate code execution or data compromise based on the provided data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a patch is available, consider limiting exposure of the RTSP service to untrusted networks to reduce risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-06-08T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a4fcd4d68715ace43b4cb52
Added to database: 07/09/2026, 16:33:17 UTC
Last enriched: 07/09/2026, 16:47:44 UTC
Last updated: 07/09/2026, 16:57:33 UTC
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.