CVE-2026-7030

HIGH CVSS 8.8 View on NVD ↗

Description

A security vulnerability has been detected in Tenda F456 1.0.0.5. This affects the function fromRouteStatic of the file /goform/RouteStatic. The manipulation of the argument page leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_120/README.md
https://vuldb.com/submit/798451
https://vuldb.com/vuln/359610
https://vuldb.com/vuln/359610/cti
https://www.tenda.com.cn/

Published: Apr 26, 2026 10:16 UTC Modified: Apr 26, 2026 10:16 UTC