A vulnerability classified as critical has been found in Tenda CX12L 16.03.53.12 . The impacted element is the function setSchedWifi of the file /goform/openSchedWifi of the component Wi-Fi Schedule Configuration Endpoint . Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-based buffer overflow. This vulnerability was named CVE-2026-11504 . The attack may be initiated remotely. In addition, an exploit is available.