CVE-2026-11493 PUBLISHED

A weakness has been identified in Tenda AC15 15.03.05.19. The impacted element is an unknown function of the file /etc_ro/smb.conf of the component Samba. Executing a manipulation can lead to weak password requirements. The attack is only possible within the local network. A high complexity level is associated with this attack. The exploitability is regarded as difficult. The exploit has been made available to the public and could be used for attacks.

• L-14 (VulDB User) reporter

• VDB-369113 | Tenda AC15 Samba smb.conf weak password
• VDB-369113 | CTI Indicators (IOB, IOC, TTP, IOA)
• CVE-2026-11493 | CVE Analysis and Report
• Submit #834818 | Tenda AC15 V15.03.05.19 Misconfiguration
• https://www.notion.so/Tenda-AC15-V15-03-05-19-3671f5ba98908023b508dc0330624dcd?source=copy_link
• https://www.tenda.com.cn/

• Weak Password Requirements CWE